Walk me through an instance where a risk system you managed failed; how did you identify and rectify the issue?