diff --git a/helm/botkube/templates/deployment.yaml b/helm/botkube/templates/deployment.yaml
index e3d9faa..d7b8c0e 100644
--- a/helm/botkube/templates/deployment.yaml
+++ b/helm/botkube/templates/deployment.yaml
@@ -40,6 +40,10 @@ spec:
         - name: {{ .Chart.Name }}
           image: "{{ .Values.image.repository }}:{{ default .Chart.AppVersion .Values.image.tag }}"
           imagePullPolicy: {{ .Values.image.pullPolicy }}
+          {{- if .Values.containerSecurityContext }}
+          securityContext:
+          {{- toYaml .Values.containerSecurityContext | nindent 12 }}
+          {{ end }}
           volumeMounts:
             - name: config-volume
               mountPath: "/config"
diff --git a/helm/botkube/values.yaml b/helm/botkube/values.yaml
index ec80647..c59c9e3 100644
--- a/helm/botkube/values.yaml
+++ b/helm/botkube/values.yaml
@@ -27,6 +27,11 @@ securityContext:
   runAsUser: 101
   runAsGroup: 101
 
+containerSecurityContext:
+  privileged: false
+  allowPrivilegeEscalation: false
+  readOnlyRootFilesystem: true
+
 # set one of the log levels- info, warn, debug, error, fatal, panic
 logLevel: info