diff --git a/.github/workflows/security-scan.yml b/.github/workflows/security-scan.yml
index 14824b550..3701c6019 100644
--- a/.github/workflows/security-scan.yml
+++ b/.github/workflows/security-scan.yml
@@ -17,6 +17,4 @@ jobs:
       - name: tfsec
         uses: aquasecurity/tfsec-pr-commenter-action@v1.2.0
         with:
-          working_directory: ${{ github.workspace }}
-          tfsec_args: --soft-fail
           github_token: ${{ secrets.GITHUB_TOKEN }}
\ No newline at end of file
diff --git a/modules/terraform/aws/data-disk/main.tf b/modules/terraform/aws/data-disk/main.tf
index 1e0ef065d..11286c622 100644
--- a/modules/terraform/aws/data-disk/main.tf
+++ b/modules/terraform/aws/data-disk/main.tf
@@ -1,6 +1,6 @@
-# resource "aws_kms_key" "ebs_encryption" {
-#   enable_key_rotation = true
-# }
+resource "aws_kms_key" "ebs_encryption" {
+  enable_key_rotation = true
+}
 
 resource "aws_ebs_volume" "data_disk" {
   availability_zone = var.zone
@@ -10,9 +10,7 @@ resource "aws_ebs_volume" "data_disk" {
   iops       = var.data_disk_iops_read_write
   throughput = var.data_disk_mbps_read_write
 
-  # encrypted  = true
-  # kms_key_id = aws_kms_key.ebs_encryption.id
-
-
-  tags = var.tags
+  encrypted  = true
+  kms_key_id = aws_kms_key.ebs_encryption.id
+  tags       = var.tags
 }