Describe a time you handled a significant security incident. What was the root cause, and how did you prevent it from happening again?