This document summarizes a presentation by Dan Cornell on software security for project managers. It discusses Denim Group's background in secure software development and services. It defines application security and contrasts it with quality assurance. Common causes of vulnerabilities like flaws in design and implementation are described. The document demonstrates vulnerability scanning and outlines goals of application security like confidentiality, integrity and availability. It concludes with questions.