diff --git a/deployment/memgraph/certifacates.yaml b/deployment/memgraph/certifacates.yaml
new file mode 100644
index 0000000..85b1f4f
--- /dev/null
+++ b/deployment/memgraph/certifacates.yaml
@@ -0,0 +1,22 @@
+apiVersion: cert-manager.io/v1
+kind: Certificate
+metadata:
+  name: memraph-certificate
+  annotations:
+    argocd.argoproj.io/hook: PreSync
+spec:
+  isCA: false
+  duration: 2160h # 90d
+  renewBefore: 360h # 15d
+  subject:
+    organizations:
+      - jetstack
+  secretName: memgraph-tls
+  privateKey:
+    algorithm: RSA
+    encoding: PKCS1
+    size: 2048
+  issuerRef:
+    name: default-cluster-ca-issuer
+    kind: ClusterIssuer
+    group: cert-manager.io
\ No newline at end of file
diff --git a/deployment/memgraph/kustomization.yaml b/deployment/memgraph/kustomization.yaml
new file mode 100644
index 0000000..7d87176
--- /dev/null
+++ b/deployment/memgraph/kustomization.yaml
@@ -0,0 +1,30 @@
+apiVersion: kustomize.config.k8s.io/v1beta1
+kind: Kustomization
+namespace: generations-heritage
+
+helmCharts:
+  - name: memgraph
+    repo: https://memgraph.github.io/helm-charts
+    releaseName: memgraph
+    namespace: generations-heritage
+    version: 0.1.1
+    valuesFile: ./values.yaml
+
+patches:
+  - target:
+      kind: StatefulSet
+      name: memgraph
+    patch: |-
+      - op: add
+        path: /spec/template/spec/containers/0/volumeMounts/-
+        value:
+          name: memgraph-certs
+          mountPath: /etc/memgraph/ssl
+      - op: add
+        path: /spec/template/spec/volumes/-
+        value:
+          name: memgraph-certs
+          secret:
+            secretName: memgraph-tls
+
+            
\ No newline at end of file
diff --git a/deployment/memgraph/values.yaml b/deployment/memgraph/values.yaml
new file mode 100644
index 0000000..2d39dba
--- /dev/null
+++ b/deployment/memgraph/values.yaml
@@ -0,0 +1,52 @@
+image:
+  repository: memgraph/memgraph
+  # Overrides the image tag whose default is v{{ .Chart.AppVersion }}
+  tag: ""
+  pullPolicy: IfNotPresent
+
+replicaCount: 1
+
+service:
+  type: ClusterIP
+  port: 7687
+  targetPort: 7687
+  protocol: TCP
+  annotations: {}
+
+persistentVolumeClaim:
+  storagePVC: true
+  storagePVCSize: 2Gi
+  logPVC: true
+  logPVCSize: 256Mi
+
+memgraphConfig:
+  - "--also-log-to-stderr=true"
+  - "--bolt-cert-file=/etc/memgraph/ssl/tls.crt"
+  - "--bolt-key-file=/etc/memgraph/ssl/tls.key"
+
+# Annotations to add to the statefulSet
+statefulSetAnnotations: {}
+# Annotations to add to the Pod
+podAnnotations: {}
+
+resources:
+  {}
+  # We usually recommend not to specify default resources and to leave this as a conscious
+  # choice for the user. This also increases chances charts run on environments with little
+  # resources, such as Minikube. If you do want to specify resources, uncomment the following
+  # lines, adjust them as necessary, and remove the curly braces after 'resources:'.
+  # limits:
+  #   cpu: 100m
+  #   memory: 128Mi
+  # requests:
+  #   cpu: 100m
+  #   memory: 128Mi
+
+serviceAccount:
+  # Specifies whether a service account should be created
+  create: true
+  # Annotations to add to the service account
+  annotations: {}
+  # The name of the service account to use.
+  # If not set and create is true, a name is generated using the fullname template
+  name: ""
\ No newline at end of file