How do you approach a situation where a software engineering team wants to bypass a security control to meet a critical product deadline?