diff --git a/aws/eks/alb.tf b/aws/eks/alb.tf
index 325c0c78d..603104b94 100644
--- a/aws/eks/alb.tf
+++ b/aws/eks/alb.tf
@@ -66,27 +66,6 @@ resource "aws_lb_listener" "notification-canada-ca-80" {
   }
 }
 
-# An HTTPS listener with an old SSL policy
-# for some clients that cannot upgrade to TLSv1.2
-resource "aws_lb_listener" "notification-canada-ca-legacy-tls" {
-  load_balancer_arn = aws_alb.notification-canada-ca.id
-  port              = 4444
-  protocol          = "HTTPS"
-  certificate_arn   = aws_acm_certificate.notification-canada-ca.arn
-  #tfsec:ignore:AWS010 Outdated SSL policy
-  ssl_policy = "ELBSecurityPolicy-2016-08"
-
-  default_action {
-    type = "fixed-response"
-
-    fixed_response {
-      content_type = "text/plain"
-      message_body = "Forbidden"
-      status_code  = "403"
-    }
-  }
-}
-
 ###
 # Document API Specific routing
 ###
diff --git a/aws/eks/securitygroups.tf b/aws/eks/securitygroups.tf
index 7b8a3cf48..f26978fb6 100644
--- a/aws/eks/securitygroups.tf
+++ b/aws/eks/securitygroups.tf
@@ -21,13 +21,6 @@ resource "aws_security_group" "notification-canada-ca-alb" {
     cidr_blocks = ["0.0.0.0/0"] #tfsec:ignore:AWS008
   }
 
-  ingress {
-    protocol    = "tcp"
-    from_port   = 4444
-    to_port     = 4444
-    cidr_blocks = ["0.0.0.0/0"] #tfsec:ignore:AWS008
-  }
-
   tags = {
     CostCenter = "notification-canada-ca-${var.env}"
   }