diff --git a/modules/dataproc/README.md b/modules/dataproc/README.md
index 0a0c4a4bb..9ba449470 100644
--- a/modules/dataproc/README.md
+++ b/modules/dataproc/README.md
@@ -46,9 +46,9 @@ module "processing-dp-cluster" {
 # tftest modules=1 resources=1
 ```
 
-### Cluster with CMEK encrypotion
+### Cluster with CMEK encryption PIPPO
 
-To set cluster configuration use the Customer Managed Encryption key, set '' variable. The Compute Engine service agent and the Cloud Storage service agent needs to have 'CryptoKey Encrypter/Decrypter' role on they configured KMS key ([Documentation](https://cloud.google.com/dataproc/docs/concepts/configuring-clusters/customer-managed-encryption)).
+To set cluster configuration use the Customer Managed Encryption key, set `dataproc_config.encryption_config.` variable. The Compute Engine service agent and the Cloud Storage service agent need to have `CryptoKey Encrypter/Decrypter` role on they configured KMS key ([Documentation](https://cloud.google.com/dataproc/docs/concepts/configuring-clusters/customer-managed-encryption)).
 
 ```hcl
 module "processing-dp-cluster" {
@@ -67,10 +67,10 @@ module "processing-dp-cluster" {
         internal_ip_only       = true
       }
     }
+    encryption_config = {
+      kms_key_name = "projects/project-id/locations/region/keyRings/key-ring-name/cryptoKeys/key-name"
+    }
   }
-  encryption_config = try({
-    kms_key_name = "projects/project-id/locations/region/keyRings/key-ring-name/cryptoKeys/key-name"
-  }, null)
 }
 # tftest modules=1 resources=1
 ```