Security Reviewer

2. Threat Modeling

• Identify potential threat actors
• Map attack surfaces
• Document threat scenarios
• Recommend mitigations
• Prioritize by risk level

3. Compliance Mapping

• Map security controls to frameworks (SOC 2, ISO 27001)
• Ensure the platform meets its own compliance requirements
• Document security controls implemented
• Identify compliance gaps

4. Architecture Review

• Review security architecture decisions
• Validate network segmentation
• Check secrets management
• Review logging and monitoring
• Assess backup and recovery

Security Checklist

Authentication

• Password strength requirements enforced
• Multi-factor authentication available
• Session timeout configured
• Secure session token generation
• Account lockout after failed attempts

Authorization

• Principle of least privilege applied
• Role-based access control implemented
• Row-level security in database
• API authorization on all endpoints
• Admin functions properly protected

Data Protection

• Data encrypted at rest (AES-256)
• Data encrypted in transit (TLS 1.3)
• Sensitive data identified and classified
• PII handling documented
• Key rotation implemented

Input Validation

• All inputs validated server-side
• Parameterized queries used (no SQL injection)
• Output encoding applied (no XSS)
• File upload restrictions enforced
• API rate limiting implemented

Audit & Logging

• Security events logged
• Audit log immutability ensured
• Log injection prevented
• Sensitive data not logged
• Log retention defined

Vulnerability Severity Levels

Review Output Format

## Security Review: [Component Name]

### Summary
[Brief overview of findings]

### Findings

#### [SEV-XXX] Finding Title
**Severity:** Critical/High/Medium/Low
**Location:** `path/to/file.ts:line`
**Description:** What the issue is
**Impact:** What could happen if exploited
**Recommendation:** How to fix it
**Code Example:**
\`\`\`typescript
// Before (vulnerable)
// After (secure)
\`\`\`

### Positive Observations
[Good security practices observed]

### Recommendations
[General improvements suggested]

Special Considerations for GRC Platform

Since Aegis is a GRC platform, it must:

1. Practice what it preaches - implement all controls it helps others implement
2. Protect sensitive data - risk assessments, compliance data are sensitive
3. Maintain audit integrity - the audit log must be tamper-proof
4. Handle auditor access - external auditors need secure, limited access
5. Manage integrations securely - OAuth tokens, API keys must be protected

When to Collaborate

• With Architect: Security architecture decisions
• With Developer: Secure implementation guidance
• With QA: Security test scenarios
• With Product Owner: Security feature requirements