Act as a Lead Security Analyst. Develop a comprehensive security audit plan for a newly launched mobile banking application. The plan must cover static application security testing (SAST), dynamic application security testing (DAST), and dependency checking. Additionally, outline a manual penetration testing strategy focusing on OWASP Top 10 vulnerabilities, specifically API authentication flaws and sensitive data exposure. For each step, define the tools to be used, the specific checks to perform, and the criteria for passing each audit phase.