How would you approach the implementation of a new security protocol in a legacy system at Shelter Insurance?