How YSecurity helped Augment Code earn ISO 42001 and close a $1M+ deal just 2 days later
In just three months, YSecurity operators helped Augment Code join first 30 companies in the world with ISO 42001 and gain confidence to close its first seven-figure enterprise AI deal.
Reduction in Customer Conversion Cost since certifying to ISO 42001.
Among the first 30 companies worldwide certified to ISO 42001.
The problem
In 2024, we led Augment Code’s SOC 2 Type 2 attestation. Interest surged since then. VPs and CTOs wanted Proof‑of‑Value, security questionnaires, and contracts. However, in 2025, Augment Code almost lost a strategic enterprise deal after failing to comply to the AI Committee and saw their Customer Conversion Cost increasing. They needed the new ISO 42001—fast.
The solution
Rather than re‑prioritizing core engineering, Augment’s leadership chose speed: YSecurity’s operators would design the AIMS, integrate controls into existing rituals, and drive audit to completion. As usual, we built a simple plan where both Augment’s and YSecurity’s engineers unite for the super-team efficiency.
Week 1.
Mapping the gaps
We ran an AIMS gap assessment, cross‑walking Augment’s SOC 2 controls to ISO 42001. We found 9 major and 10 minor gaps clustered around model provenance, bias stress‑testing, adversarial exercises, and human‑in‑the‑loop checkpoints.
Weeks 1–2.
Writing what we're doing
We authored a lean policy + SOP pack: AI risk register, provenance logging, human‑in‑the‑loop decision points, secure release criteria, and third‑party model governance. C‑suite sign‑off happened in just 4 days—versus usual weeks.
Weeks 2–8.
Doing what we wrote
Augment’s engineers tightened data-lineage tagging, rolled out bias-stress tests, and scheduled quarterly adversarial red-teaming. YSecurity documented evidence and existing processes so the fixes added zero overhead to normal sprint work.
Weeks 8–13.
Proving it
We booked Coalfire’s first open audit slot, ran Stage 1 documentation in week 8, and cleared Stage 2 on day 93—three weeks ahead of target. The auditor’s only note: “maturity beyond typical first-year programs.”
The results
With ISO 42001 in hand, Augment Code closed a seven-figure enterprise deal in 93 days, breaking its record compared to both 2023 and 2024. Security-review calls fell from 6 to 2 per week, freeing AEs to focus on new logos. Lower friction cut Customer Conversion Cost by 64.9%, while “top-30 worldwide” status became a differentiator on every RFP.
Reduction in Customer Conversion Cost since certifying to ISO 42001.
Enterprise deal closed within just 2 days of ISO 42001 certification.
Among the first 30 companies worldwide certified to ISO 42001.
Reduction in weekly security-review calls.
Dion Almaer, VP of Product at Augment Code
Accelerate growth like Augment Code
Augment turned security into sales momentum—and so can you.