Describe what role the reviewer plays in the security review process.

What will be an ideal response?

Reviews are monitoring and reporting tools; they are not responsible for fixing security problems. Nonetheless, they are responsible for reviewing all security and development plans for completeness. Reviewers should participate in technical inspections as well as review all test plans and test results for compliance with standards and adherence to regulations. In that respect, reviewers are responsible for registering non-concurrence where any non-compliance is found. Because of the latter responsibility, the review process also needs an effective enforcement mechanism to back it up.