diff --git a/.github/workflows/jit-security.yml b/.github/workflows/jit-security.yml
index 8c2a047254..fe29de44cd 100644
--- a/.github/workflows/jit-security.yml
+++ b/.github/workflows/jit-security.yml
@@ -12,6 +12,16 @@ permissions:
   id-token: write
 
 jobs:
+  docker-scan:
+    if: fromJSON(github.event.inputs.client_payload).payload.workflow_job_name == 'docker-scan' && fromJSON(github.event.inputs.client_payload).payload.workflow_slug == 'workflow-docker-scan'
+    runs-on: ubuntu-22.04
+    timeout-minutes: 60
+    steps:
+    - name: trivy
+      uses: jitsecurity-controls/jit-github-action@v4.2.2
+      with:
+        security_control: registry.jit.io/control-trivy-alpine:latest
+        
   enrich:
     if: fromJSON(github.event.inputs.client_payload).payload.workflow_job_name == 'enrich' && fromJSON(github.event.inputs.client_payload).payload.workflow_slug == 'workflow-enrichment-code'
     runs-on: ubuntu-22.04