Citadel53 - Security Portal

Citadel53 Security Portal is a multi-tenant security management platform for Managed Security Service Providers (MSSPs). It provides a centralized, single-pane-of-glass view into the security posture of every client organization, pulling real-time data from Microsoft Graph, Defender for Endpoint, Microsoft 365 Defender, Azure Secure Score, Intune, and Azure Cost Management APIs. Instead of logging into dozens of separate Azure tenants to monitor alerts, incidents, and compliance, MSSP analysts and client stakeholders access everything from one unified dashboard with role-based access controls ensuring each user only sees data relevant to their organization.

Real-Time Security Intelligence

Interactive dashboards surface Azure Secure Score and Microsoft Graph Security Score trends, security alerts and incidents, device compliance via Intune, software vulnerabilities from Defender, cost analysis across Azure subscriptions, Essential Eight compliance assessments, and prioritized recommendations — all with automatic staleness detection and refresh. Vulnerability analysis identifies weaknesses across managed devices and software, while cost breakdowns give full visibility into Azure resource spend and optimization opportunities.

AI-Powered Security Assistant

An embedded AI assistant backed by Azure OpenAI lets users ask natural-language questions about their security posture with contextualized answers drawn from live dashboard data. Each MSSP configures their own Azure OpenAI instance independently.

Reporting

Generate one-click PDF executive reports with 13 customizable sections including trend charts, compliance breakdowns, cost analysis, and vulnerability summaries. Dedicated SOC reports provide threat intelligence, incident analysis, and exposure management sections with custom author information and distribution lists. Essential Eight audits export as PDF or Excel. All reports support organization branding and are ready for leadership, board members, and auditors.

Essential Eight Compliance

Built-in ISM Essential Eight audit assessing all eight controls — Application Control, Office Macros, MFA, Patch Applications, Patch OS, Regular Backups, Restrict Admin Privileges, and Application Hardening — against live Intune and Graph data, with device-level findings, policy enforcement status, attestations with audit trails, and remediation guidance.

Key Capabilities

• Azure Secure Score and Graph Security Score with 12-month trend analysis
• Security alert and incident management across Azure, Defender, and Graph
• Device compliance tracking via Intune with policy enforcement
• Software inventory and vulnerability analysis from Defender for Endpoint
• Azure cost analysis with 12-month trends, service breakdowns, and optimization recommendations
• Essential Eight compliance audit with per-control assessment, attestations, and Excel/PDF export
• Recommendations from Azure Advisor, Defender, and Graph with impact prioritization
• AI chat assistant powered by Azure OpenAI
• Executive, SOC, and MSSP multi-tenant PDF reports
• Azure Entra ID SSO with MSAL and MFA enforcement with TOTP support
• Per-MSSP white-label branding with custom logos, colors, and domain
• Built-in audit logging for compliance and accountability across all operations
• M365 user management with license tracking and unused license detection
• Guided onboarding for MSSPs, organizations, SSO, and AI integration

Multi-Tenant Architecture

Three-tier hierarchy: Super Admins oversee the entire platform from a Global Admin Portal. MSSP Admins manage their client organizations from a dedicated portal with security dashboards, user management, SSO configuration, branding customization, and AI integration. Client Users access 9 interactive dashboard pages plus 2 reporting views. Each MSSP operates independently without requiring platform operator intervention.

Who Is This For?

• MSSPs managing multiple client Microsoft 365 and Azure tenants from a single platform
• Executives, CISOs, and board members needing data-driven security posture visibility
• SOCs needing centralized alert triage, incident management, and dedicated SOC reporting
• IT consultancies delivering security assessments, Essential Eight audits, cost optimization, and compliance reporting
• Enterprises with multiple subsidiaries or business units on separate Azure tenants