At Yugabyte, our mission is to build the most secure DBaaS available. We began researching how to best secure the infrastructure supporting our fully managed version of YugabyteDB Aeon, and concluded that external 3rd party solutions would not meet our needs. Our essential requirements included deploying a security layer over critical infrastructure, aligning with industry best practices and complying with top certification frameworks, and covering key pieces of infrastructure such as the SaaS infrastructure behind YugabyteDB. When developing any large solution, costs can be substantial, so we factored in subscription costs, storage costs, and data transfer costs to estimate pricing. We also calculated storage requirements using a formula that takes into account cloud native audit logs, SIEM agents installed on machines, and log retention days. However, finding the right SIEM tool proved difficult due to challenges such as lack of cloud native integration, limited Kubernetes support, and adapting to an evolving software landscape. After evaluating many solutions, we finalized our SIEM/SOAR tool of choice, which will be detailed in a future blog post.