Introduction: Attendees will first learn the basics of mobile applications followed by a brief background of Android and iOS platforms, their security models and an overview of their development basics. Threat Modeling: They will then learn how to model a threat profile for mobile applications depending upon the type of application and the mobile architecture used. Understanding Security Vulnerabilities in Mobile Applications: Here the attendees will get acquainted with some famous (OWASP Mobile Top 10) and a few not-so-famous flaws present in the Android and iOS applications. They would know the exact root cause and debugging techniques for them. Detecting Security Vulnerabilities: Introduction to Mobile Security Code Reviews Here the attendees would learn how Mobile experts perform source code reviews to identify security flaws in the code base. Using demonstrations and code snippets, we will highlight the techniques to enumerate the security flaws in the Android and iOS applications. The attendees would then be introduced to a detailed code review approach via an exhaustive checklist for both the platforms. Scope for Automation in Mobile Security Code Reviews: We will highlight the benefits of scripting techniques in comparison with those of simple scanning or manual testing. The attendees will also learn how to reduce the time taken for review by designing a custom script that automates the complete Android and iOS source code review process. Designing Secure Mobile Applications: Here the attendees would learn how to implement the proper controls to mitigate the security vulnerabilities in mobile applications with the help of code snippets/API. We will also discuss the best practices that have to be followed for secure development of mobile applications.