diff --git a/charts/backingservices/charts/srs/templates/srsservice_deployment.yaml b/charts/backingservices/charts/srs/templates/srsservice_deployment.yaml
index 5bc225ca3..216a78bd7 100644
--- a/charts/backingservices/charts/srs/templates/srsservice_deployment.yaml
+++ b/charts/backingservices/charts/srs/templates/srsservice_deployment.yaml
@@ -105,6 +105,10 @@ spec:
               value: ""
           resources:
             {{- toYaml .Values.srsRuntime.resources | nindent 12 }}
+          securityContext:
+            {{- toYaml .Values.srsRuntime.securityContext | nindent 12 }}
+      securityContext:
+        {{- toYaml .Values.securityContext | nindent 8 }}
       {{- if .Values.srsStorage.tls.enabled }}
       volumes:
       - name: srs-certificates
diff --git a/charts/backingservices/values.yaml b/charts/backingservices/values.yaml
index 59d0df1a3..0dfe83e58 100644
--- a/charts/backingservices/values.yaml
+++ b/charts/backingservices/values.yaml
@@ -32,12 +32,24 @@ srs:
     # Specify secret names as an array of comma-separated strings. For example: ["secret1", "secret2"]
     imagePullSecretNames: []
 
+    # Container securityContext
+    # securityContext:
+    #   runAsUser: 9999 # app
+    #   allowPrivilegeEscalation: false
+    #   capabilities:
+    #     drop:
+    #     - all
+
     env:
       # AuthEnabled may be set to true when there is an authentication mechanism in place between SRS and Pega Infinity.
       AuthEnabled: false
       # When `AuthEnabled` is `true`, enter the appropriate public key URL. When `AuthEnabled` is `false`(default), leave this parameter empty.
       OAuthPublicKeyURL: ""
 
+  # Pod securityContext
+  # securityContext:
+  #   runAsUser: 9999 # app
+
   # This section specifies the elasticsearch cluster configuration.
   srsStorage:
     # Setting srsStorage.provisionInternalESCluster to true will provision an internal elasticsearch cluster using the configuration