diff --git a/charts/haproxy/templates/daemonset.yaml b/charts/haproxy/templates/daemonset.yaml
index aac66955..32f55723 100644
--- a/charts/haproxy/templates/daemonset.yaml
+++ b/charts/haproxy/templates/daemonset.yaml
@@ -67,6 +67,8 @@ spec:
               mountPath: /tmp/etc
             - name: host
               mountPath: /host
+      securityContext:
+        readOnlyRootFilesystem: true
       volumes:
         - name: haproxy-bin
           configMap:
diff --git a/charts/haproxy/templates/etc/_haproxy.yaml.tpl b/charts/haproxy/templates/etc/_haproxy.yaml.tpl
index 25315207..9839a72b 100644
--- a/charts/haproxy/templates/etc/_haproxy.yaml.tpl
+++ b/charts/haproxy/templates/etc/_haproxy.yaml.tpl
@@ -91,3 +91,5 @@ spec:
     - name: etc
       hostPath:
         path: {{ .Values.conf.haproxy.host_config_dir }}
+  securityContext:
+    readOnlyRootFilesystem: true