How would you identify, prioritize, and remediate security vulnerabilities in systems and applications?