I don’t see that we are in much disagreement here. The question is one of implementation. Concerning tools, David says that building flexible tools is the key. I maintain that at one level we already have the basic tools if we only broaden our search beyond financial, credit and market risk management and look to operational risk management, strategic planning and the quality movement that saw its resurgence in the early ’90s. There are some excellent analytical tools, techniques and methodologies in use by our brethren in the field of quality management and yes statistical process control-things such as bow-tie diagrams, control charts and data gathering methods that we could begin to apply toward SOX and AML compliance if we care to exchange notes with them. We can then customize these tools for our specific applications and requirements in banking, finance and energy risk management.