diff --git a/.github/workflows/_terraformEnvironmentTemplate.yml b/.github/workflows/_terraformEnvironmentTemplate.yml
index 2ea5b8b..1953255 100644
--- a/.github/workflows/_terraformEnvironmentTemplate.yml
+++ b/.github/workflows/_terraformEnvironmentTemplate.yml
@@ -93,7 +93,7 @@ jobs:
 
   plan:
     name: Terraform Plan
-    runs-on: [self-hosted]
+    runs-on: [ubuntu-latest]
     continue-on-error: false
     environment: ${{ inputs.environment }}
     needs: [lint]
@@ -189,7 +189,7 @@ jobs:
 
   apply:
     name: Terraform Apply
-    runs-on: [self-hosted]
+    runs-on: [ubuntu-latest]
     continue-on-error: false
     environment: ${{ inputs.environment }}
     if: github.event_name == 'push' || github.event_name == 'release'
diff --git a/.github/workflows/codeql.yml b/.github/workflows/archive/codeql.yml
similarity index 100%
rename from .github/workflows/codeql.yml
rename to .github/workflows/archive/codeql.yml
diff --git a/code/data-model/operationaldb/.gitkeep b/code/data-model/operationaldb/.gitkeep
new file mode 100644
index 0000000..e69de29
diff --git a/code/infra/datalake.tf b/code/infra/datalake.tf
index 1529420..f37eb61 100644
--- a/code/infra/datalake.tf
+++ b/code/infra/datalake.tf
@@ -52,6 +52,17 @@ resource "azurerm_storage_account" "storage" {
   shared_access_key_enabled = false
 }
 
+resource "azurerm_storage_container" "storage_container" {
+  for_each = var.storage_container_names
+
+  name                 = each.key
+  storage_account_name = azurerm_storage_account.storage.name
+
+  container_access_type             = "private"
+  encryption_scope_override_enabled = true
+  metadata                          = {}
+}
+
 data "azurerm_monitor_diagnostic_categories" "diagnostic_categories_storage" {
   resource_id = azurerm_storage_account.storage.id
 }
diff --git a/code/infra/terraform.tf b/code/infra/terraform.tf
index 8af0267..e46fd9e 100644
--- a/code/infra/terraform.tf
+++ b/code/infra/terraform.tf
@@ -16,12 +16,12 @@ terraform {
     }
   }
 
-  # backend "azurerm" {
-  #   environment          = "public"
-  #   resource_group_name  = "<provided-via-config>"
-  #   storage_account_name = "<provided-via-config>"
-  #   container_name       = "<provided-via-config>"
-  #   key                  = "<provided-via-config>"
-  #   use_azuread_auth     = true
-  # }
+  backend "azurerm" {
+    environment          = "public"
+    resource_group_name  = "<provided-via-config>"
+    storage_account_name = "<provided-via-config>"
+    container_name       = "<provided-via-config>"
+    key                  = "<provided-via-config>"
+    use_azuread_auth     = true
+  }
 }
diff --git a/code/infra/variables.tf b/code/infra/variables.tf
index 81533e3..766cdf2 100644
--- a/code/infra/variables.tf
+++ b/code/infra/variables.tf
@@ -128,6 +128,13 @@ variable "kusto_cluster_databases" {
   default   = {}
 }
 
+variable "storage_container_names" {
+  description = "Specifies the names of the storage account containers."
+  type        = list(string)
+  sensitive   = false
+  default     = []
+}
+
 # Monitoring variables
 variable "diagnostics_configurations" {
   description = "Specifies the diagnostic configuration for the service."