“Information Technology Risk Management Using ISO 31000 Based on the ISSAF Penetration Testing Framework” (2024) INOVTEK Polbeng - Seri Informatika, 9(2), pp. 839–851. doi:10.35314/1tq72v53.