Securing sensitive information is one of the most critical aspects of maintaining trust and compliance. ISO 27001, the international standard for information security management systems (ISMS), defines a structured approach to safeguard data integrity, confidentiality, and availability. A significant piece of this framework is Identity and Access Management (IAM), which