Governance, Risk
And Compliance
Consulting
(GRC)

Regulation is becoming one of the central axes affecting the cybersecurity market. At Citadel, we offer a variety of consulting services to ensure compliance with various regulations. We guide the organization through the process until they achieve compliance with regulation, and continue providing support to minimize security gaps and to maintain full compliance. Our GRC division is divided into three teams: the Regulatory Compliance & Auditing team, the Risk Management Team, and the Supply Chain Team.

The GRC division is divided into three teams:

Regulatory Compliance & Auditing Team

Our regulatory compliance service deals with the ongoing monitoring of new laws, standards, and regulations relating to cybersecurity. This facet of our service includes mapping various organizations' existing gaps, updating and building organizations' methodologies and certifications for local and international standards and regulations, advising and consulting with organizations to implement standards and regulations, preparing work plans, implementing controls, and more. We combine our professional experience with leading law firms to overcome a variety of compliance challenges.

Risk Management Team

As part of our portfolio of risk management solutions, we offer tailor-made risk management and assessment solutions for organizations, the mapping of assets and business processes, risk assessment for systems, methods and evaluation of organizational cyber risks, the identification of cyber scenarios, preparing a business continuity plan, and more.

Supply Chain Team

Third-party business partners and suppliers have become a significant risk factor and an attractive entry point for hackers. As part of our services, we offer to update and build supply chain methodologies, map critical suppliers, perform supplier surveys according to vendor type, combine technical tests, examine contract agreements, develop monitoring and control tools, clean desk surveys, and more. We also provide dedicated policies and procedures for working with suppliers.


We support a variety of regulations relating to cybersecurity such as:
GDPR, ISO27XXX series, local and international privacy laws, SOX, and many more.

AIG
bank-of-jerusalem
BankHapoalim
BankLeumiLogo
cal
DiscountBank
harel
IsracartNewLogo
Israel_Air_Industry
Israel_Chemicals_Ltd_Logo
Logo_Ormat_Technologies
Marcantile
Migdal_Logo
Outbrain_Logo
playtika_logo
Rashut_Sdot_Teufa
Teva_logo
verint