How would you design a secure system for embedding security checks into CI/CD and operational workflows at Cisco?