diff --git a/aws_datalake/modules/emr/main.tf b/aws_datalake/modules/emr/main.tf
index 1ca3333..1b0c581 100644
--- a/aws_datalake/modules/emr/main.tf
+++ b/aws_datalake/modules/emr/main.tf
@@ -14,8 +14,9 @@ resource "aws_emr_cluster" "segment_data_lake_emr_cluster" {
     instance_profile                  = var.iam_emr_instance_profile
   }
 
-  service_role     = var.iam_emr_service_role
-  autoscaling_role = var.iam_emr_autoscaling_role
+  service_role           = var.iam_emr_service_role
+  autoscaling_role       = var.iam_emr_autoscaling_role
+  security_configuration = var.security_configuration
 
   master_instance_group {
     instance_type = var.master_instance_type
diff --git a/aws_datalake/modules/emr/variables.tf b/aws_datalake/modules/emr/variables.tf
index 5a8f9cb..49ff7c8 100644
--- a/aws_datalake/modules/emr/variables.tf
+++ b/aws_datalake/modules/emr/variables.tf
@@ -20,6 +20,12 @@ variable "slave_security_group" {
   default     = ""
 }
 
+variable "security_configuration" {
+  description = "Name of the EMR security configuration for options like Encryption, IMDS, etc."
+  type        = string
+  default     = ""
+}
+
 variable "tags" {
   description = "A map of tags to add to all resources. A vendor=segment tag will be added automatically (which is also used by the IAM policy to provide Segment access to submit jobs)."
   type        = map(string)