"Not Secure" you getting means, your websites is served by HTTP protocol (port 80) which uses a non encrypted communication.
To make it "Secure" from Browser perspective, you have to switch to HTTPS protocol (port 443), to do that you will need a Certificate tied to your DNS host name.
You can have get a free Certificate from LetsEncrypt, read documentation and choose an "ACME Client" for IIS.
ACME Client will take care of request certificate, register it on IIS and renew such certificate.
To understand a little more about "Not Secure" look here How To Secure Your site