Since you mentioned logging you might be interested in this:
Sounds like you may be researching log analysis tools soon. If so, please mention any solutions you find to that thread so we can add it to the guide and everyone can benefit from them.
I’ll also be interested to see what you come up with for a Host IDS and several of the other things you propose.