ISO 27001 is a globally recognized framework that outlines the requirements for establishing, implementing, maintaining, and continually optimizing an information security management system (ISMS). It provides a comprehensive approach to managing sensitive information, aiming to protect it from vulnerabilities. The standard is based on a {risk-base