Vol. 7 No. 1 (2021): RANCANGAN PENGENDALIAN ISO 37001:2015 DAN ISO 27001:2013 KLAUSUL 6.1 DALAM PENERIMAAN MAHASISWADI UNIVERSITAS PERTAHANAN

ISO/IEC 37001:2016 is a standard that regulates gratification in an organization's business, while ISO/IEC 27001:2013 regulates information security management system. Clause 6.1. of both standards explain the same thing, namely the risk and opportunity control plan and the strategy for its implementation. By analyzing the implementation of ISO/IEC 37001:2016 and ISO/IEC 27001:2013 at the Defense University (UNHAN), a university under the Ministry of Defense, the author makes an anticorruption control design. The case study used is the activity of UNHAN’s student admission. From the results of this design, it can be seen the parts that are vulnerable to corruption so that later recommendations for anti-corruption control can be formulated.