This conference call transcript was computer generated and almost certianly contains errors. This transcript is provided for information purposes only.EarningsCall, LLC makes no representation about the accuracy of the aforementioned transcript, and you are cautioned not to place undue reliance on the information provided by the transcript.
Zscaler, Inc.
12/2/2024
Good day and thank you for standing by. Welcome to the Zscaler first quarter 2025 earnings call. At this time, all participants are in a listen-only mode. After the speaker's presentation, there will be a question and answer session. As a question during the session, you need to press star 11 on your telephone You will then hear an automated message advising your hand is raised. To withdraw your question, please press star 1-1 again. Please be advised that today's conference is being recorded. I would now like to hand the conference over to your speaker today, Ashwin Kesareddy, Vice President, Investor Relations and Strategic Finance. Please go ahead.
Good afternoon, everyone.
and welcome to the Zscaler First Quarter Fiscal Year 2025 Earnings Conference Call. On the call with me today are Jay Chowdhury, Chairman and CEO, Remo Kanissa, CFO. Please note, we have posted our earnings release and a supplemental financial schedule to our Investor Relations website. Unless otherwise noted, all numbers we talk about today will be on an adjusted, non-gap basis. you will find the reconciliation of gap to the non-gap financial measures in our earnings release. I'd like to remind you that today's discussion will contain forward-looking statements, including but not limited to the company's anticipated future revenue, calculated billings, operating performance, gross margin, operating expenses, operating income, net income, free cash flow, dollar-based net retention rate, future hiring decisions, remaining performance obligations, income taxes, earnings per share, our objectives and outlooks, our customer response to our products, and our market share and market opportunity. These statements and other comments are not guarantees of future performance, but rather are subject to risk and uncertainty, some of which are beyond our control. These forward-looking statements apply as of today, and you should not rely on them as representing our views in the future. We undertake no obligation to update these statements after this call. For a more complete discussion of the risks and uncertainties, please see our filings with the SEC, as well as in today's earnings release. I also want to inform you that we'll be attending the following conferences. UBS Global Technology and AI Conference in Scottsdale on December 4th. Scotiabank Global Technology Conference in San Francisco on December 10th. Barclays Global Technology Conference in San Francisco on December 11th, Needham Growth Conference on January 9th and 10th. Now, I'll turn the call over to Jay.
Thank you, Ashwin. We delivered a strong Q1 with all metrics once again exceeding the high end of our guidance. Revenue grew 26% year over year and bookings growth accelerated to over 30% driven by increasing customer commitments, to our zero-trust exchange platform and growing interest in our AI solutions. Our billings growth of 13% far exceeded the recent average growth rate of publicly traded legacy network security vendors by over 10 percentage points, demonstrating our continued market share gains in cybersecurity. We are making tremendous progress executing on our go-to market plans, and driving innovations that our customers are relying on us for. With continued strong demand, I'm very pleased to increase our full-year billings and revenue guidance. Q1 was a solid quarter for profitability as well. With our operating discipline, we grew operating profit by 50% year-over-year and delivered new Q1 records for operating margin of 21% and free cash flow margin of 46%. While many successful SaaS companies strive for rule of 40 results, our revenue growth and free cash flow margin makes us a rare SaaS company that operates at rule of 70 or better. This places us in the top handful of the 145 largest public SaaS companies. In my scores of customer conversations, CXOs are prioritizing zero trust security and AI for their IT spending. we are fighting AI with AI. We recently delivered several AI innovations and are continuing to expand our AI portfolio in the following three areas of high customer interest. First, securing use of AI applications for faster and safer adoption of public and private AI applications. We enable customers to securely adopt public AI apps such as ChatGPT, Microsoft Copilot, and GitHub Copilot with Zscaler for Copilots. Zscaler for Copilots provides granular visibility to find and classify on-prem or cloud data, gives access control for only the right users to access data, limits Copilot's discovery of data, fixes Copilot misconfigurations, and enforces policies to stop sensitive data from leaking. Our industry-leading capabilities in this area are driving large customer wins. For example, in a new logo win, a global 2,000 technology services customer purchased our AI-powered data protection solution, which accounted for 50% of the seven-figure ACV deal. Data protection enables this customer to securely roll out Microsoft Copilot. The secure use of Office 365 was a huge opportunity for us, and I believe the secure use of Microsoft Copilot is a huge opportunity as well. In addition to enabling secure adoption of Copilots, we provide visibility and control into public AI apps used by employees, score the risk level of AI apps, and store prompt queries for logging or auditing purposes. With the widespread adoption of public AI apps, we are seeing growing demand for their security. Our innovations are expanding beyond securing public AI apps to customers' private AI apps, including chatbots, LLM, and SLM models and inference engines. We're expanding the functionality of our inline proxy-based zero trust exchange with an LLM proxy to analyze prompt queries and results to detect and prevent prompt injections and other malicious activities. Second, AI-powered automated digital experience for operational efficiency and faster resolution of end-to-end user performance issues. Our already available automated digital experience products, including ZDX CoPilot, are contributing to large deal wins. For example, in a seven-figure ACV upsell deal, a large healthcare provider doubled their ZIS subscription to 60,000 seats and purchased ZDX Advanced Plus, which includes ZDX Co-Pilot for all 60,000 seats. This customer plans to use ZDX Co-Pilot to automate IT operations and reduce resolution time for service tickets. With this deal, this customer's annual spend more than doubled with us. We are taking ZDX Co-Pilot to the next level with ZDX AI Agent to automate root cause analysis, resulting in further reduction in resolution time, and provide automated recommendations to fix user performance issues. Third, AI-powered security products for better cyber and data protection and SecOps automation. We have delivered several AI-powered innovations for data and cyber protection, such as automated data classification, GenAI-based image classification, zero-day vulnerability detection and prevention, AI-powered app segmentation, and ML-based IoT device discovery. For increased productivity and efficiency of security operations, we have introduced several innovations, including risk 360 and unified vulnerability management by extending our zero-trust platform with data fabric technology. We are developing other AI-powered innovations, including breach prediction, threat hunting, and more. Our AI-powered solutions leverage the vast amount of proprietary enterprise data generated by 500 billion transactions per day processed by our Zero Trust Exchange. We will continue to leverage our data and combine it with new agent-based technologies to rapidly expand our AI portfolio. The combination of Zero Trust and AI is creating exciting new opportunities. which we are well positioned to capture with our large and expanding platform. Moving on, hackers are finding new ways to exploit the limitations of legacy castle and moat security to launch an increasing number of sophisticated attacks. Such attacks often start with exploitation of firewall or VPN architecture. These traditional security solutions enable threat actors to move laterally on the corporate network and compromise the entire organization. To make up for the flawed architecture, legacy security vendors are offering disjointed point products under the pretext of a platform. This increases cost and complexity for customers. A Fortune 50 retail customer recently told me that a legacy Fiverr vendor sold them a so-called platform, and when they tried to implement it, they found that it was nothing more than consolidated billings. Complexity is the enemy of security and resilience. No wonder so many enterprises are getting breached despite spending billions of dollars on so-called sassy security, which is nothing more than virtual firewalls and VPNs in the cloud. The sooner organizations move away from these disjointed security solutions to zero trust, the sooner they will become secure and resilient. C-scaler customers modernized and future-proof the security with our platform for better security, operational simplicity, and cost reduction. Today, we proudly secure over 35% of Global 2000 and about 45% of the Fortune 500. And we're seeing more and more large enterprises adopt our platform. To give you an example, in a new logo seven-figure ACV deal, a Global 2000 aerospace and defense company purchased ZIA for 100,000 users and workload protection for 5,000 workloads. This customer initiated a strategic shift towards a cloud-first architecture and chose ZSQL as their partner for their security transformation. Additionally, we see significant opportunity for ZPA upsells. Let me share an example. An existing Fortune 500 insurance customer expanded the ZIA subscription from 45,000 to 70,000 users and purchase ZPA for all 70,000 users. In addition to securing access to private applications, rapid M&A integration for faster time to value realization was a key objective for this customer. ZPA expedites M&A integration by securely providing zero trust access to applications for the acquired entities employees without having to connect the networks of two companies. This is not possible with a firewall-based SASE solution. With this upsell, this customer's annual spend with us almost doubled to over $5 million. We expect ZPA to continue to be one of our biggest growth drivers in fiscal 25. Moving on to data protection. At Xenafly, we outlined our broader vision of our data protection solution that our customers are increasingly adopting. For example, in a seven-figure ACV deal, a Fortune 500 pharma company purchased our data protection solution for over 23,000 users to eliminate multiple point products, including legacy data loss prevention, insider threat management, email data security, and more. This purchase nearly doubled the annual spend of this customer with Zscaler. I'm thrilled with the innovations we are bringing to our data protection solution. For example, we recently introduced a unique offering which combines the capabilities of ZPA with our cloud browser product to bring zero-trust access to third-party suppliers and partners. Traditionally, third-party application access was addressed either by VDIs that are expensive and complex, or by third-party enterprise browsers that require yet another agent to be deployed on the endpoint. Third-party enterprise browsers are complex to deploy and manage, and their vulnerabilities are being exploited by attackers. Our solution uses standard browsers like Chrome and provides superior security while eliminating VDIs and third-party browsers. To give you a few examples, a global 2,000 IT services company for 20,000 users, a US-based shipping and packaging company for 7,000 users, a global 2,000 insurance company for over 5,000 users, each purchased our cloud browser solution to eliminate legacy third-party access products. We will continue to invest to accelerate innovations in this area. Next, our emerging products, including ZDX, zero trust for branch and cloud, and AI analytics are increasingly contributing to our success. I'm excited to share that emerging products ARR is growing twice as fast as our core products. Combined with our account-centric go-to-market motion, our emerging products are driving large seven-figure deals. Let me share two examples. First, In a seven-figure upsell deal, a Fortune 500 transportation customer purchased ZIA for workloads, eliminating virtual firewalls from their cloud environments. This upsell drove approximately 40% increase in the annual spend of this existing $5 million-plus ARR customer. Driven by our continued innovations for workload protection and our account-centric go-to-market strategy, we are securing large workload footprints but increasing number of customers, which has accelerated workload protection ARR over the past couple of quarters. Second, in a new logo seven-figure ACB win, a large U.S. automotive supplier purchased our Zero Trust SD van for all 45 of the branches and Zero Trust device segmentation for their 37 factories. A combination of Zero Trust SD-WAN with Zero Trust device segmentation will eliminate lateral threat movement among branches and factories, which is not possible to achieve with traditional SD-WAN. I believe with our solutions, we will accelerate the decline of north-south and east-west firewalls. This deal is an example of a global system integrator, or GSI, working closely with Zscaler to transform customers' legacy networks and security to zero-trust architecture. Next, in the federal vertical, we added a new cabinet-level agency this quarter, and now we proudly serve 14 of the 15 cabinet-level agencies, including the DoD. Federal agencies are adopting the Zscaler platform to improve their security posture and reduce cost and complexity by eliminating firewalls and VPNs. Having landed these cabinet-level agencies, we see significant upsell opportunities to grow ARR over time. We are also continuing expansion into other federal agencies. For example, in a new logo win, a large federal agency purchased ZPA and ZDX, for 22,000 users in a seven-figure ACV deal. Government investigations by multiple countries, including Australia, the European Union, Japan, Singapore, the United Kingdom, and the United States, concluded that nation-state cyber attackers are successfully breaching the moat created by firewall-based solutions. And as a result, these governments are planning to adopt zero-trust architecture. We see this as a huge opportunity, and we will leverage our success in U.S. federal to grow our business in these and other countries. Next, let me share a few highlights of the progress we're making to up-level our go-to-market engine. I am pleased to share that we're making solid progress on hiring and attrition plans. We had a strong quarter of hiring highly experienced Kona-carrying account executives and head-load attrition. We expect these trends to continue in Q2, strengthening our sales capacity heading into the second half of fiscal 25. Last year, we made the strategic decision to shift our sales motion from opportunity-based selling to account-centric selling. Our CRO, Mike Rich, and his team are executing on this strategy, and we're already seeing stronger customer engagements, higher quality pipeline, better close rates, and more business with customers. Strong customer engagement and sales execution contributed to over 20% year-over-year growth in unscheduled billings in Q1. As a reminder, unscheduled billings is comprised of new, upsell, and renewal billings. We also grew $1 million plus ARR customers by 25% year-over-year to 585%. We ended Q1 with over 65 customers spending $5 million plus annually with us. Moving on to the channel, we are working closely with our strategic partners, including GSIs, strategic national and regional partners and hyperscalers to drive faster value realization for customers. An increasing number of strategic partners are embedding Zscalers platform in their solutions for their customers. Our joint partner offerings are expanding beyond ZIA, ZPA, and ZDX to now include our emerging products. Overall, with strong execution in our account-centric sales motion, we expect to continue to grow the number of $1 million-plus and $5 million-plus customers at a strong pace. With a more mature pipeline, a stronger sales team, and growing partner engagement, I believe we remain on track to increase sales productivity and achieve strong growth. In conclusion, our expanding portfolio that combines the power of Zero Trust and AI is resonating with customers. Our customer engagements are getting stronger as demonstrated by our Net Promoter Score, or NPS, of over 70, which is well over 2x the SaaS company average. I am proud of the progress we made in our go-to-market initiatives this quarter, and we will continue to make further progress towards achieving our next goal of $5 billion in ARR. Now, I'd like to turn over the call to Remo for our financial results.
Thank you, Jay. Our Q1 results exceeded our guidance on growth and profitability, even with ongoing customer scrutiny of large deals. Revenue was $628 million, up 26% year-over-year and up 6% sequentially. From a geographic perspective, Americas represented 54% of revenue, EMEA was 30%, and APJ was 16%. Our total calculated billings in Q1 grew 13% year-over-year to $517 million. As Jay mentioned, our unscheduled billings, comprised of new, upsell, and renewal billings, grew over 20% year-over-year. Our calculated current billings grew 12% year-over-year. Our remaining performance obligations, or RPO, grew 26% from a year ago to $4.411 billion. Current RPO was approximately 49% of the total RPO. We added Q1 with 585 customers with over $1 million in ARR and 3,165 customers with over $100,000 in ARR. This continued strong growth of large customers speaks to the strategic role we play in our customers' digital transformation journeys. Our 12-month trailing dollar-based net retention rate was 114%. While good for our business, our increased success in selling bigger bundles, selling multiple pillars from the start, and faster upsells within a year can reduce our dollar-based net retention rate in the future. There could be variability in this metric on a quarterly basis due to the factors I just mentioned. Turn to the rest of our Q1 financial performance. Total gross margin of 80.6% compares to 80.7% in the year-ago quarter. Our total operating expenses increased 5% sequentially and 19% year-over-year to $372 million. We continue to generate significant leverage in our financial model, with operating margin of approximately 21%, an increase of about 330 basis points year-over-year. Our free cash flow margin was 46%, including data center CapEx of approximately 3% of revenue. We ended the quarter with over $2.7 billion in cash, cash equivalents, and short-term investments. Now let me provide our guidance for Q2 and full-year fiscal 2025. As a reminder, these numbers are all non-GAAP. For the second quarter, we expect revenue in the range of $633 million to $635 million, reflecting a year-over-year growth of approximately 21%, gross margins of approximately 80%. I would like to remind investors that we are introducing new products that are experiencing strong growth and are optimized for faster go-to-market rather than margins. This will continue to influence our gross margins. We plan to optimize new products for margins over time as they scale. Operating profit in the range of $126 million to $128 million. Net other income of $18 million. Earnings per share in the range of 68 to 69 cents, assuming a 23% tax rate and 163 million fully diluted shares. For the full year fiscal 2025, we expect billings in the range of $3.124 billion to $3.149 billion, reflecting a year-over-year growth of 19% to 20%. We expect our first half mix to be approximately 39.3% to 39.5% of our full year billings guide. Revenue in the range of $2.623 billion to $2.643 billion, reflecting a year-over-year growth of 21% to 22%. Operating profit in the range of $549 million to $559 million. Earnings per share in the range of $2.94 to $2.99, assuming a 23% tax rate and approximately 164 million fully diluted shares. We expect our free cash flow margins to be approximately 23.5% to 24%. We expect our data center CapEx to be approximately three points higher as a percentage of revenue compared to fiscal 2024, as we invest in upgrades to our cloud and AI infrastructure. With a large market opportunity and customers increasingly adopting the broader platform, we'll invest aggressively to position us for long-term growth and profitability. On a personal note, I'd like to share that after eight amazing years, I have decided to retire as Chief Financial Officer of Zscaler. It has been my greatest pleasure to be a part of Zscaler's journey from less than $250 million to over $2.5 billion in ARR. I'd like to thank Jay for his confidence in me. It has been a true partnership, which for me personally has been very special. I'd also like to thank the employees of Zscaler and our board of directors for their support through the years. I'd also thank our customers, partners, investors, and analysts. I am confident that Zscaler will continue to shape the next several decades of cybersecurity with its zero trust exchange platform. I look forward to following Zscaler's progress. Now, I'll turn the call over to Jake.
I want to personally thank Remo for all his contributions to Zscaler. Remo has been a friend and a trusted business partner whose wisdom and judgment helped us make many critical decisions as we scaled our business at an unprecedented pace. He will be dearly missed. Remo will remain as CFO until his successor is appointed. With that, operator, you may now open the call for questions.
Thank you. And at this time, we will conduct a question and answer session. As a reminder, to ask a question, you need to press star 1-1 on your telephone and wait for your name to be announced. To withdraw your question, please press star 1-1 again. Please limit yourself to one question in the interest of time. Please stand by. We'll compile the Q&A roster. One moment for our first question.
Our first question will come from the line of Sotek Kalia from Barclays.
Your line is open.
Okay, great. Hey, guys. Thanks for taking my question here. And first off, Remo, congrats on your retirement. Heck of a run at Zscaler and all the companies before this as well.
Thank you, Sokka. I appreciate that.
Absolutely. Jay, maybe for you. Thanks for the detail. on the unscheduled billings growth of 20% this quarter. Can you just maybe talk about how that did versus your expectation or maybe versus last quarter for some context? And as you look forward, do you still feel confident in sort of the accelerated billings growth as that contracted non-cancellable billings pool sort of grows and normalizes back to what it was historically?
So I'll start. So I get the 20% growth is what we expected and actually exceed our expectations also. As we talked about, the scheduled contracted billings is 7% in the first half and 23% in the second half. So we do expect the unscheduled billings to be 20% plus also in the second half, as we talked about in the last call.
Good. And in addition to that, let me add a few comments. Our Q1 was very strong. There are three factors that I believe will keep on helping us the second half. One, we're seeing strong demand for Zscaler platform, including solid signs of interest for AI security offerings we have that wasn't there before. Two, we have a strong and growing pipeline. Three, Our RAM sales capacity has strengthened, and we had lower sales attrition in Q1. So I feel very good about our guidance for the second half.
Very helpful. Thanks, guys. Thank you. One moment for our next question.
Our next question comes from the line of Andrew Nowinski from Wells Fargo. Your line is open.
OK, thanks, Remo. Sorry to hear you're retiring. It's certainly been a pleasure working with you over the last decade.
I guess I like to ask a question.
I guess I like to ask a question on the data security. The ZDX co-pilot certainly sounds like an interesting opportunity. You know, given your prior partnership with Microsoft and your ability to securely deliver traffic to Office 365, I would imagine Microsoft is supporting you in this endeavor, but just wondering maybe if you could provide some more color on how they're helping you bring more customers and help more customers roll out Copilot and whether you are seeing Zscaler beat Varonis in that space. Thank you.
Sure. It's a good question. Yes. What we're building is essentially leveraging a lot of work we did with Microsoft over the years. We've done tons of integration, including integration for data discovery and classification, whether it's talking about OneDrive or SharePoint and others. What gives us unique advantage is that we are sitting in line for all the traffic for Office 365. We can also go what's known as out-of-band using API for some of the classification, discovery, and the like. In fact, this is as big of an opportunity for us as it was actually for Office 365, maybe bigger in some ways. We are here, the customers have already embraced Office 365. Customers are actually beginning to use Microsoft Co-Pilot, and now they're concerned about the data leakage and privacy as well. We're seeing real deals. I briefly mentioned during an earnings release, a G2000 company, they wanted to secure Microsoft Co-Pilot So they did a deal with us. This was a seven-figure deal and is really driven by our data protection solution, that's AI Power, which identifies and makes sure only the right amount of data can be accessed by the right user when they're using Microsoft Core Pilot. So while many companies out there will try to do AI security, but Not very many of them are sitting in the traffic path. They may be able to do one piece of it, but we can do both in line as well as data sitting at us. So I'm very excited for the opportunity, and you'll see more coming with us. We are already working with the field, with many of the Microsoft organizations, to make sure we help our customers as customers of the same common interest.
Thank you. Thank you.
One moment for our next question. Our next question comes from Gabriela Borges from Goldman Sachs. Your line is open.
Hi, good evening. Thanks for taking my question. Jay, I wanted to follow up on your comment on VPA being a particularly meaningful driver of growth in FY25. Maybe just remind us how far along do you think we are in the VPN replacement cycle? how is the competitive environment changing and what are some of the catalysts that might close MetaPrize to re-evaluate their VPN and zero trust VPA strategy now versus maybe call it during COVID? Thank you.
Yeah. I thought VPNs will be gone a long time ago. There's lots and lots of them sitting out there. Similar to we used to wonder how long will blue code proxies be here. We're still discovering lots of them and replacing them. But the opportunity is not just VPN. VPN is the starting point. That's got a big hit for us. We are the entire inbound DNC that replaces the whole stack, starting with load balancers, DDoS protection, external firewalls, VPN, all that kind of stuff. So that's a big opportunity. And the next phase of this opportunity ends up being zero-trust segmentation out there. So three-phase VPN replacement, entire inbound DMZ, and segmentation with zero trust. If you look at what we've done with ZPA in terms of numbers, it's a remarkable growth. At the time of the IPO, ZPA was about a single-digit percent of new and upsell business. Today, ZPA is over 40% of the mix of new and upsell generated by ZIA and ZPA combined. I believe it's a matter of time when all of our customers will buy ZIA, ZPA, and ZDX for every employee. That's where our customers are headed. We see more and more wins out there. And the so-called competition is still trying to spin up virtual VPN in the cloud and Connor Zero Trust.
So we think we have a big advantage in this area for quite some time.
Thank you for the color and congrats to you for me as well.
Sure. One moment for next question. Our next question comes from Brad Zelnick from Deutsche Bank. Your line is open.
Great. Thanks so much. So much information you've shared Remo. Fantastic run. Congrats and a nice strong booking start to the year guys. Jay, I was surprised to hear you compare your growth this quarter to that of the firewall players out there, just given how differentiated you are. And some of those folks are talking about significant hardware refresh opportunities ahead as they have boxes that go end of life. If you look backwards, to what extent are those events opportunities for Zscaler to go in and totally re-architect and transform and displace a set of branch firewalls, for example, and bring them onto your platform. Thank you.
Yes. I agree with your statement. I was wondering, should we ever talk about comparing appellate growth to firewalls? Sure, but the delta was so big that we thought it's worth highlighting it. But moving on to the other question you had about a refresh next year. When people used to ask me three years ago, are you replacing firewalls directly? And I used, I would say, No, we are not focused on firewalls. But where we are sitting today, firewall refresh is a good opportunity for us, and we are planning to target customers with our cost takeout programs. Until about a year ago, we had limited impact on firewalls, but now with a combination of our Zero Trust SD-WAN and Zero Trust device segmentation, we're able to replace most of the firewalls, north-south firewalls, east-west firewalls, in data center, in branches, as well in the cloud as well. So I'm seeing tremendous customer interest to reduce or eliminate firewalls with our platform. So it's a good opportunity that we pursue.
Thank you. If I could just sneak in a quick follow-up, I don't know for you or Remo, but 30% plus bookings growth. I mean, that is really strong. I think by my math, current bookings using CRPO even is strong as well. So it's not as if this is driven by duration. Can you maybe unpack that for us just to help us to understand? I understand the scheduled versus unscheduled billings dynamic, but we're looking at a pretty significant delta. And I feel like that bookings number is so strong, it's worth highlighting and maybe just drilling into a bit for everyone. Thank you so much again.
Yeah, I mean, it's a great number, Brad. You know, 30% bookings growth, we're really, you know, proud of that. You know, one thing to call out is that, you know, is that, you know, our unscheduled fillings of 20 plus percent growth basically both in the first half and second half is helping that. So, but 30% bookings growth is, Again, a really good number. CRPO, strong growth in CRPO at 22%. RPO growth year-over-year at 26%. So all good metrics. And again, we're well-positioned with our customers. Our new and upsell is 65% with upsell in Q1. Again, selling into accounts with the new go-to-market organization. is taking hold, a lot of good things really happening for Z-scalers to go into Q2 and also the second half of this year.
Thank you. One moment for our next question. Our next question comes from the line of Mike Sikos from Needham. Your line is open.
Hey, guys. Thanks for taking the questions here. And I just really wanted to come back to the 20% plus year-to-year unscheduled billings in the quarter. So congrats on that. I just wanted to see, can you tie that into the disclosure that we have today on that emerging products ARR? Is most of that unscheduled billings growth being sustained by those emerging products? To see or hear that that ARR base is growing twice as fast as core, I wanted to get some more color around that. If that's the driver and which products within that emerging products class is seeing the most traction, anything that would be incremental? Thank you very much, guys.
Yeah, I mean, it's, you know, Mike, it's across the board. You know, it's both emerging products as well as certain foreign products. The emerging products, you know, include AI, workload protection, CDX, and our brand solutions. ZDX, you know, is doing very well, but as we called out, also workloads is doing well for us. You know, going forward, you know, we made the comment that we'd be in the mid-20s, you know, percentage of new enough sell for the emerging products, and we still feel that. But to answer your question, you know, it's across the board, our entire platform.
Yeah, maybe I can add a couple more comments about it. Yeah, that... ARR, emerging products ARR, growing at two exo-core products. We're very excited about it. So what's driving it? The branch is one part of it. I highlighted some of the deals for the branch. We talked about seven-figure ACB deal for the branch for these automotive suppliers. We had Zero Trust SD bands securing 45 branches. We had AirGap doing Zero Trust segmentation of devices for 37 branches. So that thing is taking all. We believe this is going to disrupt the SD-WAN, which enables lateral tech movement and trans-transfer attacks. I was especially pleased with the progress we're making on cloud workload protection. We have been selling workload protection. We did a great seven-figure deal in a workload that was very interesting because a lot of these customers in the past have started small with us. early on in smaller footprints. Now they're expanding those footprints with bigger deals. And that's what's going to accelerate our opportunity here. And then there'll be zero trust workload segmentation the next opportunity. That's why we are excited because the only competition in the workload space for us for communication is old school firewalls.
And we are excited. Thank you very much.
One moment for our next question. Our next question will come from the line of Itay Cadran from Oppenheimer. Your line is open.
Thanks, and Remo, also congratulations and enjoy retirement. You earned it. A couple of small ones for me, first of all, if I may. Remo, your last earnings call, you gave NARR and an ARR target for the end of the fiscal year. I was wondering if you can give us an update on ARR here and now and the target for year-end. And then on the second thing, on the emerging products, can you remind us what are the two or three biggest pieces within the emerging products category, number one, but number two also, what percent of new business activity do they represent for you right here, right now? Just trying to get a better sense of the change and mix there contribution-wise. Thank you.
I'll start, then let Fletcher finish up. So our ARR target for the end of the year is $3 billion, and so we are on track for that $3 billion. Net retention rate is 114%, which, again, we think is outstanding. You know, as we talked about, that net retention rate is influenced with customers buying more up front. But because of the new emerging products and the strength of new emerging products, that has a positive effect, you know, to that.
um related to you know what makes up the the first part of version products i'll turn it over to jay yeah let me expand upon that you can put them in a few buckets cdx started out it's a it has done very well it's the biggest piece of it zero trust branch started out the branch connector with a zero trust appliance zero trust st van it's a great area for us zero trust for workloads a cloud i shared a couple of examples good opportunities And now the AI products is becoming actually pretty good area for us as well. So we are excited. In the past, you know, we had talked about a part of AI products called AI analytics. This solution bundle was up 90% year over year. It's coming from a small base, but we're very pleased with the traction of the various emerging products we're taking.
In the new business and upsell opportunity, as we called out, we expect it to be in the mid-20% range, up from, I believe it was 22% last year. So we do see emerging products increasing in strength as we go forward.
Appreciate it. Thank you. Thank you.
One moment for our next question. Our next question will come from Rob Owens from Piper Sandler. Your line is open.
Yeah, thanks for taking my question. And I guess while I have the opportunity, I'll pick on Remo and something he said. Because, Remo, in your prepared remarks, you talked about ongoing customer scrutiny on large deals. And I don't know if that's just a general economic comment or there's something else coloring your opinion. You know, a lot of the script was around adding AI in some of these transformational processes. solutions that you guys are rolling out. Just curious if there's something else that might be lending to longer sales cycles as deals are getting bigger, or if that was just more of a general economic comment. Thanks.
Yeah, Rob, it was just a general economic comment, which basically we haven't really seen any change for a while. Yes, but that in ways helps us.
We are seeing interest in cyber, especially cyber that can really reduce the chance of ransomware attacks and the like. So that's where Zero Trust comes in. And then the CIO often will say, and that hasn't changed, I like your cyber method, but if you're going to use my cost and complexity to doubly motivate it. So really we have combined the need for Zero Trust and now AI becomes a further catalyst with cost and complexity reduction, which is helping us because most companies can't do cost reduction. A legacy firewall vendor is not going to cannibalize that large install base of firewalls. We can.
Great. Thanks for the color.
One moment for our next question. Our next question will come from Brian Essex from JP Morgan. Your line is open.
Good afternoon, and thank you for taking the question, Remo. Congratulations. We're certainly going to miss working with you. Maybe I wanted to hit on the SecOps side of the equation. Maybe, Jay, can you help us understand where we are in terms of progress with Avalor? And I noticed in the press release, you noted that you surpassed a half a trillion daily transactions, which is huge. How are your customers evaluating your ability to scale over the volume of data and traffic that you have, given all the changes we're seeing in the SecOps side of the market in the current environment? Thanks.
SecOps market is ready for disruption. It's a big market. We have taken a very thoughtful approach of starting by building the data fabric. so that all queries and all the stuff doesn't need to come to the massive data lake, which can take forever. So, Avalor acquisition has done that for us. Now, building upon Avalor, we had done a few things already that are in the market. We started with RISC-360 that's powered by the backend Avalor. We have unified vulnerability management that actually helps customers make sure they can properly prioritize vulnerabilities in that space. And then running on the same platform, some of the digital experience offerings are getting bigger and better as well. In the SecOps, the biggest thing we're doing that others can't easily do is essentially scoring and prioritization of what needs to be done. But the next phase that will be powered will be the products we're building. It's called breach prediction and threat hunting. They're working with some of the early stage design when customers are seeing some very good results. So what the point we wanted to make was you can go and build technology, but if you don't have the kind of private enterprise data you need, you can't do much with it. Let me contrast it. ChatGPT took the public data of the whole world, trained it on LLMs. They're able to do it well, but the logs are private. C-scaler having those logs available, we can actually train the staff, but based on the collected learning, this thing can be applied to a specific customer so each customer gets benefit. So we are increasing our investment in this area. And over time, you're going to start seeing some more meaningful results in this area.
All right, that's helpful. Thank you.
One moment for next question. The next question comes from Joel Fishbein from Truist. Your line is open.
Thanks for taking the question. Remo, big shoes to fill and you'll be sorely missed. Jay, you talked a little bit about the public sector and U.S. Federal. Just curious if there's been any updates on DOD and Thunderdome and any of the projects there. They've been looking at doing a revitalization and He's going to be primed for that. We'd love to hear where that stands.
So we continue to gain share in federal market across the board. One of the things brought up is now we reached 14 of the 15 cabinet-level agencies as our customers. Across defense, too, we have a number of initiatives. We have talked about some of them in the past. We think we have a very, very big opportunity out there And with the new administration coming on board, we are all reading about the push for cost reduction. I believe that's a positive for us. For our federal business, this is because we reduce cost and complexity. We eliminate north-south, east-west firewalls, VPN, NAC, segmentation, all of those kind of products. So I'm excited about the federal opportunities, and it's not just the U.S. they're taking the same kind of solutions to some of the Western-friendly, NATO-friendly countries as well.
Thank you. One moment for our next question.
Our next question, a call from Fatima Bulani from Citi. Your line is open.
Oh, good afternoon. Thank you for taking my questions. I appreciate it. And Remo, congratulations on an illustrious career. I wanted to ask you a question with regards to the updated billings guidance and some of the implied second quarter billings based on some of the seasonality commentary you shared, Remo. Is there anything that we should think about these are the transactions that maybe landed early just trying to get a better sense of, hey, first quarter, you know, was really strong out of the gate, certainly relative to expectations. But why would we see, you know, some of that pare down and then the second quarter, second fiscal quarter, if you can give us some color around that. Thank you so much.
Yeah, you know, our guide for the second quarter, you know, for billings is actually up, you know, the 39.3%, the 39.5% would indicate that for the second quarter. You know, the key thing is that we had a great first quarter, and if you take a look, we're passing the beat for the entire year. Really, fundamentally, nothing's, you know, changed, but we talked about on the prior call, you know, the key dynamic which is occurring is the scheduled billings. We got 7% in the first half and 23% in the second half. So nothing's really fundamentally changed. What I can say is that our pipeline supports our guidance. What I can say also is that hiring has been very good in our sales organization. Attrition is down. The go-to-market organization really is becoming very, very strong. SIs, as we go forward, will become a more important part to Zscaler. So, you know, the second half, you know, basically, as we talked about, and you have our guidance, you know, we brought up guidance for the full year, and we feel comfortable with that. Absolutely.
Also, the same thing, that go-to-market execution, why increase the leadership team has been outstanding.
Thank you. Thank you. One moment for our next question.
Our next question comes from Srinik Kothari from Baird. Your line is open.
Hey, congrats on the retirement, Remo. It was great working with you, and good luck for the next chapter. Thanks for taking my question. So the shift to account-centric selling, of course, is yielding benefits already, as Jay mentioned, with the pipeline quality. Just a follow-up to... Brad's question on the bookings growth, and I'd say, Rima and Jay, you mentioned about the partnership with GSIs facilitating significant deal wins. You mentioned about the seven-figure SD-WAN. Can you just help provide some more quantifiable color in terms of incremental ARR tied to GSI-led deals? And any more examples that highlight success with GSIs if that is leading to larger, bigger deals or also longer sales cycles? And how should we think about the billings going forward?
Right. Very good question.
We are actually seeing increasing contribution of GSIs, especially in large accounts. I highlighted two deals, actually, this time that are driven by GSIs as strong partners. An auto supply parts company, this was a combination of zero trust segmentation and zero trust branch, eliminating the need for firewalls and in lots and lots of factories and branches. They also, GSI also helped us with a G2K services company where we sold protection for Microsoft and co-pilot type of stuff. I think the difference we're seeing is that GSI is now working more closely with customers starting the early stage and they are standardizing on some of our solutions. It used to be ZIS, EPS, EDX. Now there's standard solutions are, including emerging products as well. So good momentum. And also think of it, when we talk about eliminating a bunch of products, generally those products end up being what? They are firewalls, the VPN, the SD-WAN, the NAC, the VDIs, the device segmentation. It creates an opportunity for GSA partners to get services to replace, take those products out. Over time, we'll start giving you more and more data about it, but I'll say they're very pleased with the results, and this is because of the leadership they added to drive GSI that's making a big difference.
Got it. Thanks a lot, Jack. One moment for our next question.
Our next question comes from Matt Hedberg from RBC. Your line is open.
Great. Thanks for taking my question. There's lots of really good things to think about in this quarter. I guess I wanted to go back to the data protection solution. It seems like it's really contributing to large deals, and it's not the first thing you've talked about. I looked back, I think in Q4 of fiscal 23, you talked about it approaching $250 million of ARR, and I think at the time it was growing about 60%. Any update on the scale of that business? I think it was maybe about 12% of ARR back then. I have to imagine it's been growing faster than the base business, but that feels like it's a really, really material contributor to new and emerging product growth.
Yes, data protection keeps on growing faster than our overall business. We are doing some big deals. I think with the emergence of AI, one of the biggest things that's going to really help drive data protection is AI because companies are worried about the data leaking out there as they start using more and more public AI services like ChatGP, even Co-Pilot falls under that area. And then they'll be worried about private AI applications that our customers are building too. So we have built probably the most comprehensive platform for data protection, not just inline data and endpoint data for SaaS applications, data in the cloud with DSP on the wall, and even data security for emails as well. I think you keep on seeing us. Another comment I made was, as all largely data protection, exfiltration happens on the Internet, we are sitting in line. We're naturally there. We're doing SSL, TLS inspection.
So it's natural for Expect to grow this business, and we're doing a good job with it. Thank you. One moment for our next question.
And our last question for today will be from the line of Roger Boyd from UBS. Your line is open.
Great. Thanks for taking questions. And Remo, sad to see you go, but I'll echo my congrats on your retirement there. It's been a pleasure. Jay, just to follow up on data security, it seems like you're having a lot of traction upselling that data security portfolio, but I'm wondering, To what extent that you've seen that holistic view that really only inline vendors can do start to influence new ZPA, ZIA deals, and how big of a competitive differentiator you see that being going forward?
Data protection, majority of the time, it comes with ZIA, ZPA. With such a large install base, our customers started on data protection sites. and had none or small data protection. So it's easy and natural for us to start that way. We are seeing some of the customers who, some of the prospects starting with interest on the data protection side as well. Those numbers are relatively small. The biggest products that are actually helping us with new logos without ZIS EPA are actually products like AirGaps, Zero Trust Device Segmentation, or Avalars. unified quality management. Look, a company like Zscura, that has a large platform. We can sell a lot in install base. We can also sell a lot of the new logo opportunities because there's a big market for us there. That's why we don't really push for one or the other.
We think both are important for us and we are doing well in both areas.
Thank you. And with that, I would like to turn it back over to Jay Chaudhry for any closing remarks.
Well, thank you all for your interest in C-Scaler. We look forward to seeing you in one of the many conferences that we'll be participating in. See you then. Thank you.
Goodbye.
Thank you for your participation in today's conference. This does include the program. You may now disconnect. Everyone have a great day.