Information Technology Risk Management Using ISO 31000 Based on the ISSAF Penetration Testing Framework. ISI. 2024;9(2):839-851. doi:10.35314/1tq72v53