A review of a system’s security architecture is dependent on the system being examined, its purpose and is consequently very specific.
However the following high-level areas are considered when conducting the review:
Performing a source code security review during the development phases of a project allows the early identification of
design and implementation security flaws. Remediating a flaw in this stage of the project is typically 15 times
less costly that remediating the same flaw once the project has entered production.