diff --git a/nginx-default.conf b/nginx-default.conf
index 3d67dc68c..ae1f35892 100644
--- a/nginx-default.conf
+++ b/nginx-default.conf
@@ -5,5 +5,13 @@ server {
         root /usr/share/nginx/html;
         index index.html index.htm;
         try_files $uri /index.html;
+
+        # Add security headers
+        add_header X-Content-Type-Options nosniff;
+        add_header X-Frame-Options SAMEORIGIN;
+        add_header X-XSS-Protection "1; mode=block";
+        add_header Referrer-Policy no-referrer-when-downgrade;
+        add_header Content-Security-Policy "default-src 'self'; script-src 'self' https://www.google-analytics.com https://www.googletagmanager.com; style-src 'self' https://fonts.googleapis.com; font-src 'self' https://fonts.gstatic.com; connect-src 'self' *.hasadna.org.il;";
+
     }
 }