How do you ensure program requirements are met while also following company processes and security constraints?