Introduction In an era of increasing cyber threats, protecting sensitive business data is crucial. ISO 27001 certification provides a structured framework to establish an Information Security Management System (ISMS), ensuring data confidentiality, integrity, and availability. Achieving certification enhances security, compliance, and customer con