About Insybit
Insybit is an AI-powered marketing intelligence company based in India. When they needed to submit a security questionnaire response for a major insurance deal, they turned to Osto. They build data-driven solutions and custom AI tools that help brands make smarter decisions across their marketing stack: Google Analytics, Adobe Analytics, WhatsApp engagement, conversion rate optimisation, and marketing automation. Where a traditional marketing agency manages campaigns, Insybit sits deeper in the stack, turning raw data into actionable intelligence and building the tooling that makes marketing teams faster and more effective.
Their clients include large enterprise brands, which is exactly what makes the security question so relevant. Working with a large insurance player is the kind of engagement that can define an early-stage company’s trajectory. It is also the kind of client that does not sign a contract without a vendor security review.
And that is where the problem started.
The challenge: a security questionnaire was holding up the contract
Insybit had been working toward a contract with one of India’s largest insurance companies. The relationship was strong, the work spoke for itself, and the contract was close. Then the enterprise security questionnaire arrived.
Before signing a contract with any technology or service vendor, their procurement and IT teams require evidence that the vendor meets a defined security standard. This is not a courtesy review. It is a gate. The contract does not move until the questionnaire is answered satisfactorily.
For Insybit, a marketing agency focused on delivering client results rather than maintaining a formal security program, the questionnaire was a problem they had no immediate answer to. It covered API security, data handling practices, access controls, incident response, and security certifications, none of which Insybit had documented in the format an enterprise security team needed to see.
The founder spent five to seven days reaching out to vendors across the market. Nobody could move at the speed the situation required or help with both the questionnaire response and the underlying security infrastructure it referenced.
A deal worth lakhs was sitting unsigned while the clock ran. Through a shared network connection, Insybit reached Osto.
About Osto
Osto is a unified security and compliance platform built for startups and growth-stage companies. Rather than selling individual point solutions, Osto bundles the security modules that companies need across their growth journey: WAF, CSPM, endpoint protection, VAPT, source code assessment, SOC 2, ISO 27001, and security questionnaire response, into a single platform that deploys in days rather than months.
For companies like Insybit, which need to meet enterprise security requirements but do not have a dedicated security team, this means the gap between “we have no documented security program” and “we can answer any enterprise questionnaire” closes in a matter of days, not quarters.
The solution: security stack deployed, questionnaire answered, deal unblocked
Osto took on both problems simultaneously. The security questionnaire from the insurance company required evidence of real controls in place, not just written policy documents. Answering it credibly meant having actual security infrastructure deployed, not just claiming it.
Osto deployed the security stack for Insybit and used the running infrastructure as the basis for the questionnaire responses. Each answer was backed by a real, active control rather than a written claim.
Within 48 hours of engaging Osto, the questionnaire was answered and submitted. The insurance company’s security review was satisfied. The contract moved forward.
“We had spent almost a week trying to figure this out with different vendors. Nothing was moving. Osto came in, understood the problem immediately, and had us sorted in 48 hours. The deal closed.”
[Founder name], Founder, Insybit
Results
Security questionnaire answered in 48 hours. After five to seven days of going around the market without a solution, Osto resolved both the questionnaire and the underlying security requirements within two days of engagement.
Contract with a large insurance player signed. A deal worth approximately Rs 15-16 lakh that was sitting unsigned moved to signature once the security review was cleared.
Security posture in place for every deal that follows. With the Osto stack running, Insybit can now answer any enterprise security questionnaire without repeating the process. Every subsequent enterprise client conversation starts from a different position.
ROI that is difficult to overstate. The value of the single deal Osto helped close represents a multiple of more than 100x on the initial Osto engagement. And that is one deal.
The part that matters beyond the deal
The Rs 15-16 lakh contract is the number that is easy to point to. But the more important shift is structural. Before Osto, a security questionnaire from any enterprise client would have sent Insybit back into the same scramble: five to seven days of outreach, uncertainty about whether a deal would hold, and a founder spending time on vendor management instead of growing the business.
After Osto, that problem does not exist. The security stack is running. The questionnaire response capability is in place. When the next large client sends a vendor security review, the answer comes back in minutes, not days. Enterprise sales conversations no longer carry the risk of stalling at the security gate.
For an agency growing its enterprise client base, that shift compounds. It is not just one deal. It is the posture that makes every subsequent enterprise deal cleaner.
What comes next
The Insybit engagement continues to expand as the business grows and the compliance requirements around them deepen.
| Phase | What was done |
|---|---|
| Phase 1 · Complete | Web and cloud security. WAF and CSPM deployed, security questionnaire answered and submitted to the insurance company. Contract unblocked in 48 hours. |
| Phase 2 · Planned | VAPT and source code assessment. A structured security assessment of Insybit’s application and code infrastructure to identify and remediate vulnerabilities before they surface in client audits. |
| Phase 3 · Planned | SOC 2 and ISO 27001. As Insybit continues to grow its enterprise client base, formal certification gives the business a permanent, audited answer to the security question that every large client eventually asks. |
Osto helps companies who need to move fast without getting security wrong.
If your team is building for enterprise clients in any industry where vendor security reviews are part of the sales process, a security questionnaire will arrive. The question is whether you are ready for it before it blocks a deal, or scrambling to answer it after.
We work with lean teams to deploy the right security infrastructure, respond to enterprise questionnaires, and build the compliance program that scales with the business. No in-house security team required.
Insybit
India
AI-Powered Marketing Intelligence
Enterprise security questionnaire blocking contract with a large insurance client
WAF, CSPM, Security questionnaire response, VAPT and source code assessment (planned), SOC 2 and ISO 27001 (planned)
Questionnaire answered in 48 hours. Contract signed. 100x+ ROI on the Osto engagement.