diff --git a/clusters/cl01tl/services/talos/values.yaml b/clusters/cl01tl/services/talos/values.yaml
index d7b3e8c54..8ea55ef02 100644
--- a/clusters/cl01tl/services/talos/values.yaml
+++ b/clusters/cl01tl/services/talos/values.yaml
@@ -7,9 +7,6 @@ etcd-backup:
           runAsUser: 1000
           runAsGroup: 1000
           runAsNonRoot: true
-          capabilities:
-            drop:
-              - ALL
           seccompProfile:
             type: RuntimeDefault
         affinity:
@@ -42,6 +39,11 @@ etcd-backup:
           command:
             - /talos-backup
           workingDir: /tmp
+          securityContext:
+            allowPrivilegeEscalation: false
+            capabilities:
+              drop:
+                - ALL
           env:
             - name: AWS_ACCESS_KEY_ID
               valueFrom: