Conducting Effective Application Risk Assessment And Mitigation Strategies