From infrastructure code to board-ready risk report — Citadel automates threat modeling, risk scoring, control tracking, and compliance posture in one unified platform. No spreadsheets. No silos.
Risk drift detected: 3 residual scores exceeded appetite thresholds since last review. Payment Gateway risk now Critical.
| SQL Injection — Payment API | Critical | Review |
| Hardcoded JWT Secret | Critical | Open |
| Over-Privileged IAM Role | High | Review |
| PII Leaked in API Errors | Medium | Mitigated |
Security analysts spend the majority of their time filling templates and chasing status updates — not reducing actual risk.
Manually linking threats, scoring likelihood and impact, writing summaries, mapping controls — every single record. Teams document three risks a week, if they're lucky.
No audit trail. No version control. Owners change, cells overwrite, nothing is traceable. Auditors ask for evidence nobody can find.
Most teams find NIST, ISO, and PCI gaps the week before an audit — not throughout the year. It becomes a fire drill every quarter.
Tenable and Rapid7 produce thousands of findings. None of them automatically feed into your risk register or change your scores. That connection is made manually, or not at all.
Infrastructure changes every sprint. Threat models don't. There is no connection between your Terraform code and your risk register — so your risk picture is always months out of date.
Citadel connects the dots between infrastructure, threats, vulnerabilities, controls, and compliance — so nothing falls through the gaps.
AI isn't an add-on — it's embedded in threat modeling, risk scoring, descriptions, attack tree review, asset summaries, mitigation recommendations, and the live dashboard. Native, not bolted on.
Tenable.io, Tenable.sc, and Rapid7 InsightVM findings are automatically imported and feed directly into risk scoring — no manual copy-paste between tools. Vulnerabilities become risk inputs the moment they're discovered.
Custom frameworks, configurable risk workflows with threshold-triggered automation, custom risk scales, and choice of AI provider (GPT-4o or Google Gemini). The platform adapts to your process, not the other way around.
Every major workflow in Citadel has AI assistance built in. It's not a chatbot — it's native automation embedded at every step of the risk lifecycle.
Paste Terraform or infrastructure state — Citadel generates a fully OWASP-compliant Data Flow Diagram and complete STRIDE classification automatically. No manual drawing.
Select threats and vulnerabilities — Citadel drafts a complete, structured risk description automatically. Analysts review and refine, not write from scratch.
Submit your attack tree in one click. Citadel's AI returns structured improvement suggestions, missing paths, and risk scoring adjustments — with cached results for performance.
Generates executive-level exposure summaries per asset — combining threats, vulnerabilities, and active controls into a single readable narrative, cached for performance.
Tailored remediation actions suggested per identified risk — not generic control templates. Each recommendation is contextualised to the specific threats and asset involved.
The live dashboard runs real-time anomaly detection, flags risk drift when scores exceed appetite thresholds, and surfaces AI-generated widget insights as your data changes.
Every screen you see is real — this is the platform your team will use from day one.
| Risk | Asset | Inherent | Residual | Status | Owner | |
|---|---|---|---|---|---|---|
|
SQL Injection via Payment API
R-0041 · Updated 2h ago
|
Payment Gateway |
20
|
12
|
In Review | JM |
|
|
Hardcoded JWT Secret in Codebase
R-0039 · Updated 1d ago
|
Auth Service |
20
|
18
|
Open | SR |
|
|
Over-Privileged IAM Role — Lambda
R-0035 · Updated 3d ago
|
AWS Lambda |
15
|
9
|
In Review | AL |
|
|
PII Leaked in API Error Responses
R-0031 · Updated 5d ago
|
User API |
12
|
3
|
Mitigated | KL |
|
|
No Rate Limiting on Auth Endpoints
R-0028 · Updated 1w ago
|
Auth Service |
9
|
9
|
Accepted | JM |
All integrations include connection testing and credential validation before use — no blind configuration.
Track posture across all supported frameworks simultaneously — not one at a time, not pre-audit. Citadel maps controls automatically as risks are documented and keeps your posture score live all year.
Controls link to framework requirements as you document risks — no manual cross-referencing spreadsheet required.
Upload files, add URLs, or write notes — all linked directly to controls and accessible to auditors in a single export.
See what's unmapped — per asset or org-wide — all year. Gaps are visible the moment they appear, not the week before an audit.
Citadel serves every role in the security and compliance team — each with the right views and the right level of access.
Run threat models and build attack trees in minutes. AI drafts documentation so you review and close, not write from scratch. Onboard in 2–3 days.
Structured risk records with automatic dual scoring. Configurable workflows enforce your process. Full ownership and remediation tracking with immutable audit trails.
Live posture across 6 frameworks with evidence linked to every control. Gap analysis runs all year — not just the week before an audit.
Executive dashboard with AI-generated insights and risk drift alerts. Board-ready reports on demand. Full visibility without needing to dig through records.
Paste Terraform, get a DFD and threat model instantly. Scanner findings from Tenable and Rapid7 flow into risk scoring automatically — risk management in the pipeline.
Full read-only access to audit logs, evidence, control coverage, and risk history. Every change logged with user, IP, request UUID, and structured JSON diffs. Nothing is missing.
6 built-in roles — Admin, Analyst, Asset Owner, Auditor, Risk Manager, Viewer. Integrated with Keycloak OIDC; roles sync automatically on every login.
Every create, update, delete, and workflow transition is logged with the user, IP address, request UUID, and structured JSON diffs. Nothing is ever lost.
Multi-stage workflows with threshold-triggered automation (e.g., auto-apply critical workflow when residual score exceeds threshold). Choose GPT-4o or Gemini — swap without redeployment.
We'll walk you through the platform on a live demo — threat modeling from your IaC, your scanner findings, your compliance framework. No slides, no sales deck. Just the platform.