diff --git a/.github/workflows/main.yml b/.github/workflows/main.yml
index 909dcb1..513b377 100644
--- a/.github/workflows/main.yml
+++ b/.github/workflows/main.yml
@@ -6,6 +6,8 @@ on:
   pull_request:
     branches: [ master, 'release/*' ]
 
+permissions: read-all
+
 jobs:
   verify:
     runs-on: ubuntu-latest
diff --git a/SECURITY.md b/SECURITY.md
new file mode 100644
index 0000000..16b0e2b
--- /dev/null
+++ b/SECURITY.md
@@ -0,0 +1,8 @@
+# Security Policy
+Intel is committed to rapidly addressing security vulnerabilities affecting our
+customers and providing clear guidance on the solution, impact, severity and
+mitigation.
+
+## Reporting a Vulnerability
+Please report any security vulnerabilities in this project [utilizing the guidelines
+here](https://www.intel.com/content/www/us/en/security-center/vulnerability-handling-guidelines.html).