Your question is rather open ended. There are several different possible parts/answers.
1) the container itself - are you interested in securing this?
2) the endpoints - are you interested in securing those?
if so, what types of endpoints do you have?
3) removal of "out of the box" extra components that are not needed/not being used by your app.
If you clarify/narrow I will try to advise you further.