Citadel's MSSP

In the reality of digital space, the number of Cyber-Attacks is on the rise, defense costs are climbing, and professional personnel is in shortage in the market. As a result, more and more organizations are switching to Managed Security Service Provider (MSSP) configuration.

Citadel's SOC (Security Operation Center) facility is successful through it's uncompromising use of highly skilled human capital, recruited from the most well-known Israeli military Intelligence Units, in facilitating the services and the systems appropriate to each and every customer, dealing with their needs in overcoming Cyber-Attacks and following up with investigative reports delivering complete solutions.

Citadel's MSSP services are based on several main building blocks as laid out below. The services can be suited to all kinds of organizations and can be purchased separately or together as a package.

Our main building blocks are:

Monitoring and Alert

Citadel's Monitoring and Alert services are active 24/7 365 days a year, run by a highly professional team of analysts. Our team is capable of monitoring any Security Information and Event Management (SIEM) system, whether supplied by the client or Citadel's "best of breed" Cloud based SIEM solution.

Threat Hunting

Citadel's Threat Hunting services are available to our customers on an ongoing basis according to their specific needs. Citadel's threat hunters do not wait for alerts, rather they actively use professional knowledge from well-known sources such as Indicators of Compromise (IOCs), attack methodology, operating system behaviors, network activity and other threat intelligence. They actively search across networks and endpoints for signs of threats and encounter them before they attack or, at least minimize their damage.

Cyber Intelligence services

Citadel uses a wide range of threat intelligence and mitigation platforms that deliver a proactive defense by transforming threat intelligence into automated security actions. We monitor your external risk profile and analyze tens of thousands of threats in order to automate the risk mitigation life cycle. This includes monitoring and analyzing your organization's domains, IP addresses, DLP indicators, mobile applications, social media pages, secret projects, and technologies in use, BINs, VIP names and emails to identify and validate threats to your organization.We analyze and prioritize potential data leaks, brand imitation incidents. Phishing attacks, external system vulnerabilities and VIP alerts to classify and respond to targeted threats.

Incident Response

Citadel's Incident Response (IR) services operate 24/7 365 days a year, run by a highly skilled professional team of analysts. Our team will respond to any Cyber-Attacks according to a predefined Playbook, manually or automatically using a Security Orchestration and Automation (SOA) system. Citadel's remote IR capability reduces the response time to Cyber-Attacks and even prevents potential damage from occurring to the organization.

Forensic Investigation Services

Investigating a Cyber-Attacks is one of the main challenges faced by business organizations. Citadel's Forensic Investigation services are available 24/7 365 days a year, run by a highly professional team of analysts. Citadel's in-depth Forensic Investigations leave no stone unturned in Analyzing and reporting Cyber-Attacks that have occurred on any pre-monitored endpoint or network device in the customers infrastructure. By pre-installing the Citadel Cloud based forensic solution, customers enjoy an extremely quick response time and an understanding of the attacks that have occurred.

Citadel's MSSP is based on

The "Best of Breed"

Thinking about moving to the MSSP model? Not satisfied with your current MSSP provider? Contact us today.

Contact us