Skip to content

Ready for EU Cyber Resilience Act compliance?

Use our CRA Readiness Scorecard today

Platform

Unified Exposure Management
Agentic Workflows

Integrations

Take a Tour
Customers

Testimonials

Industry Recognition
Don’t Buy Another Scanner!
Unified Exposure Management Solutions
Unified Vulnerability Management

AI Exposure Management

Application Security Posture Management

Software Supply Chain Security
By Use Case
Prepare for Claude Mythos

De-Risk AI Innovation

Secure Vibe Coding

Prepare for the Cyber Resilience Act

Simplify M&A Security

Streamline DevSecOps Collaboration

Accelerate Compliance

Upgrade from Kenna Security
By Role
CISO/CSO

AppSec Leaders

InfraSec Leaders

Product Security Leaders
By Industry
Finance, FinTech, Banking

Manufacturing

Retail

Technology / Cybersecurity
Partners
Overview

Technology Alliances

Partners (Resellers, VAR, MSSP)

Integrations

Become a Partner

Deal Registration
Resources
View All Resources

Blog

Datasheets & Briefs

White Papers & Reports

Videos & Podcasts

Customer Stories

Tours & Walkthroughs

Learning Center
Featured Resources

Blog
Cyber Resilience Act Compliance: From Regulatory Pressure to Operational Excellence

Use Case Brief
Automate EU Cyber Resilience Act Compliance Workflows
Company
About Us

Leadership

News

Events

Contact

Support

Careers
Customers

Testimonials

Industry Recognition
The Purple Book Community Charitable Giving & Social Initiatives

Login Request demo

- Unified Exposure Management Solutions
- Unified Vulnerability Management
- AI Exposure Management
- Application Security Posture Management
- Software Supply Chain Security
- By Use Case
- De-Risk AI Innovation
- Secure Vibe Coding
- Prepare for the Cyber Resilience Act
- Simplify M&A Security
- Streamline DevSecOps Collaboration
- Accelerate Compliance
- Upgrade from Kenna Security
- By Role
- Chief Information Security Officers
- Application Security Leaders
- Infrastructure Security Leaders
- Product Security Leaders
- By Industry
- Finance, FinTech, Banking
- Manufacturing
- Retail
- Technology / Cybersecurity

Login Request demo

Building a Robust AppSec Program With the OODA Loop Framework

Episode 46 November 16, 2023

Podcast Host

VP of Marketing, ArmorCode

Observe, Orient, Decide, Act. Johnson Controls Product Security Director Brian Pitts walks us through how a framework developed for military applications can help us secure the software kind. OODA puts into letters a process that should be familiar to most security practitioners: 1. collecting data from the environment; 2. contextually assessing findings; 3. prioritizing based on risk context, scores, and/or severity; and 4. taking remedial action. Brian thoughtfully shares a bit of how ArmorCode enables his team at Johnson Controls to painlessly OODA at scale.

Share on LinkedIn Share on X Share on Reddit

Listen Anywhere: Your Favorite Podcasts, Anytime

Subscribe on Apple Podcasts
Subscribe on Amazon Music
Subscribe on Audible
Subscribe on Spotify
Subscribe on Stitcher
Subscribe on YouTube
Subscribe on PlayerFM
Subscribe on Pocket Casts
Subscribe on iHeartPODCASTS
Subscribe on TUNEIN

Related resources

From Shadow AI  to AI Exposure | Agents of Security podcast episode 105

From Shadow AI  to AI Exposure

AI at RSA: From Bolted-On to Baked-In | Agents of Security podcast episode 104

AI at RSA: From Bolted-On to Baked-In

AI Risks Unpacked at PBC Connect | Agents of Security podcast episode 103

AI Risks Unpacked at PBC Connect

The State of AI Risk Management: Community Dialogue - Agents of Security podcast episode #102

The State of AI Risk Management: Community Dialogue

Rise of the Security Agents - Agents of Security podcast episode #101

Rise of the Security Agents

From Scans to CTEM: The Evolution of Vulnerability Management | Let's Talk ASPM #100

From Scans to CTEM: The Evolution of Vulnerability Management

The Cyber Resilience Act Countdown – Are You Ready ? | Let's Talk ASPM #99

The Cyber Resilience Act Countdown – Are You Ready?

AI Inside & Out: Managing the New Risks in Your Code & Apps | Let's Talk ASPM #98

AI Inside & Out: Managing the New Risks in Your Code & Apps

How AppSec Gets Done: AI, ASPM, and an Analyst's Insights | Let's Talk ASPM #97

How AppSec Gets Done: AI, ASPM, and an Analyst’s Insights

Seeing Is Believing

Schedule a demo or take a tour today.

Demo Request
Contact
Take a Tour
The Purple Book Community
Login

© 2026 ArmorCode. All rights reserved.

Privacy Policy
Terms of Use
Security

LinkedIn
YouTube
X