To improve security procedures, annual compliance training for all employees is mandated at Humana.

Humana has also been praised for its positive organizational attitude in adapting to HIPAA and SOX, although corporate officials acknowledged that some aspects of meeting regulatory goals were challenging. Still, compliance with both legislative acts has been portrayed by top management as 'good hygiene' in terms of patient security and accounting practices. There was none of the excessive hostility or secrecy sometimes seen when adapting to new regulatory challenges at other corporations (Fitzgerald, 2006, p.50). This attitude made all employees more willing to take such steps as memorizing rather than writing down passwords, which may have proved an irritant had not the organization stressed its necessity.

In fact, there is more overlap between Sarbanes-Oxley than might be immediately obvious, making Humana's experiences with both HIPAA and SOX equally illustrative. SOX was originally passed to limit off-book...
[ View Full Essay]