diff --git a/.alcove/security-profiles/pulp-service-reviewer.yml b/.alcove/security-profiles/pulp-service-reviewer.yml
new file mode 100644
index 00000000..4d1a123e
--- /dev/null
+++ b/.alcove/security-profiles/pulp-service-reviewer.yml
@@ -0,0 +1,16 @@
+name: pulp-service-reviewer
+display_name: Pulp Service Reviewer
+description: Read-only access to pulp/pulp-service with permission to post review comments
+tools:
+  github:
+    rules:
+      - repos: ["pulp/pulp-service"]
+        operations:
+          - clone
+          - read_prs
+          - read_issues
+          - read_contents
+          - read_commits
+          - read_branches
+          - read_git
+          - create_comment
diff --git a/.alcove/tasks/reviewer.yml b/.alcove/tasks/reviewer.yml
index ffd8bcec..7b80dae6 100644
--- a/.alcove/tasks/reviewer.yml
+++ b/.alcove/tasks/reviewer.yml
@@ -27,4 +27,4 @@ outputs:
   - comments
 
 profiles:
-  - pulp-service-contributor
+  - pulp-service-reviewer