diff --git a/data/workshop/exercise2.mdx b/data/workshop/exercise2.mdx
index 9425f4e..6b8b4aa 100644
--- a/data/workshop/exercise2.mdx
+++ b/data/workshop/exercise2.mdx
@@ -44,6 +44,54 @@ Angie has shared a high level design with you that states the Central services n
| *Architecture for Red Hat Advanced Cluster Security* |
+After deploying Central ensure you can log in to the web console using the automatically generated credentials.
+
+Documentation you may find helpful is:
+
+- https://docs.redhat.com/en/documentation/red_hat_advanced_cluster_security_for_kubernetes/4.5/html-single/installing/index#install-central-operator_install-central-ocp
+- https://docs.redhat.com/en/documentation/red_hat_advanced_cluster_security_for_kubernetes/4.5/html-single/installing/index#verify-central-install-operator_install-central-ocp
+## 2.3 Generating an init bundle
+Alright, you've given Angie a quick tour around the Red Hat Advanced Cluster Security Console, now it's time to secure this hub cluster by generating an init bundle named `prd-acme-hub` and applying it to the cluster.
+
+Angie would prefer to use the **Operator** method for these tasks as she explains having repressed memories of trying to find indentation issues in helm chart templates and never ever wanting to touch helm ever again.
+
+
+| |
+|:-----------------------------------------------------------------------------:|
+| *Create an init bundle in Red Hat Advanced Cluster Security* |
+
+
+Documentation you may find helpful is:
+
+- https://docs.redhat.com/en/documentation/red_hat_advanced_cluster_security_for_kubernetes/4.5/html-single/installing/index#portal-generate-init-bundle_init-bundle-ocp
+
+
+## 2.4 Securing the hub cluster
+
+The pair session is going well, Angie is impressed how quickly you got to this point. You now have the init bundle downloaded and explain to her that you just need to import it on the cluster and create the `SecuredCluster` resource to finish the process.
+
+Consulting the high level design she lets you know the init bundle and `SecuredCluster` resources need to be deployed to the `prd-acme-secured` namespace, with the cluster being named `prd-acme-hub` within RHACS.
+
+Reading further in the design Angie points out that the **Contact Image Scanners** setting should be set to `ScanIfMissing` as this makes the admission control process more secure by ensuring all images are scanned before they can be admitted to the cluster.
+
+Documentation you may find helpful is:
+
+- https://docs.redhat.com/en/documentation/red_hat_advanced_cluster_security_for_kubernetes/4.5/html-single/installing/index#installing-sc-operator
+
+
+| |
+|:-----------------------------------------------------------------------------:|
+| *Secured cluster list in Red Hat Advanced Cluster Security* |
+
+
+
+## 2.5 - Check your work
+
+If your pair session with Angie has finished and the hub cluster is secured please post a message in `#event-anz-ocp-security-hackathon` with the message:
+
+> Please review [team name] solution for exercise 2.
+
+This exercise is worth `25` points. The event team will reply in slack to confirm your updated team total score.
diff --git a/public/static/images/security/init-bundle.png b/public/static/images/security/init-bundle.png
new file mode 100644
index 0000000..9736ea7
Binary files /dev/null and b/public/static/images/security/init-bundle.png differ
diff --git a/public/static/images/security/secured-cluster.png b/public/static/images/security/secured-cluster.png
new file mode 100644
index 0000000..9c6f236
Binary files /dev/null and b/public/static/images/security/secured-cluster.png differ