Describe a major security incident you helped resolve. What was your specific role, and what did you learn from the post-mortem?