Worked on security hardening for the microsoft/AzureTRE repository by implementing private Azure Container Registry (ACR) access as the default, restricting public exposure and enforcing image pulls over Virtual Networks. This feature was developed using Terraform for infrastructure as code, with supporting updates to Bash deployment scripts and HCL configurations to ensure seamless integration. The approach reduced the attack surface and improved regulatory compliance for AzureTRE deployments by ensuring container images are only accessible through private networks. The work demonstrated a strong focus on Azure security best practices and DevOps automation, with careful attention to deployment workflows and versioning consistency.