When designing controls, we must understand what to protect. There might be blind spot that the intended controls are ineffective or even void.
For inherent design weakness, retrofit would be costly and sometimes not possible without rebuilt from scratch.
As a good practice, a design review to assess the control effectiveness before build will avoid such pitfall. Either a peer review or engaging independent subject matter expert will help to spot weakness with fresh eyes.