How would you approach designing a secure software architecture for a medical device at Johnson & Johnson?