Logging should be simple. Probably simpler than it is. The recent spate of Log4j vulnerabilities demonstrates that.
What else in your tech stack is over-engineered or exposed?
Your quality and security strategy should be:
How can we simplify?
Can we simplify without losing features?
Will simplifying actually improve features and usability?