How do you break down a complex security incident or architectural flaw into manageable parts at H&R Block?