You work for HDA Inc. as an auditor of their information system. During the course of an investigation, you come to the conclusion that a piece of software that is currently in operation is several years behind the times and is no longer supported. The entity being audited has advised you that the upgrading to the most recent version of the program will take about 2 months to complete. In the given circumstances, what is the MOST EFFECTIVE approach to lessen the immediate risk associated with making use of a version of the software that is not supported?