Describe a scenario where you identified a potential operational gap in an existing risk workflow. What steps did you take to address it?