Zscaler, Inc.

Thank you for standing by and welcome to Zscaler's third quarter 2026 earnings conference call. Currently, all participants are in a listen-only mode. After the speaker's presentation, there will be a question and answer session. To ask a question during the session, you will need to press star 1-1 on your telephone. To remove yourself from the queue, you may press star 1-1 again. I would now like to hand the call over to Kim Watkins, SVP of Investor. Please go ahead.

Good afternoon and thank you for joining us today. Welcome to Zscaler's third quarter fiscal 2026 earnings conference call. On the call with me today are Jay Chowdhury, Chairman and CEO, and Kevin Rubin, CFO. Please note that we posted our earnings release, shareholder letter, and a supplemental financial schedule to our investor relations websites. Unless otherwise noted, all numbers we talk about today will be on an adjusted non-GAAP basis. You will find a reconciliation of GAAP to the non-GAAP financial measures in our earnings release. Before we get started, I'd like to remind you that today's discussion will contain forward-looking statements, including, but not limited to, the company's anticipated future revenue, annual recurring revenue, net new annual recurring revenue, operating margin, gross margin, operating profit, net other income, earnings per share, and free cash flow margin, our customer response to our products, our expectations regarding AI and its impact on our business and customers, and our market share and market opportunity, and our objectives and outlook. These statements and other comments are not guarantees of future performance, but rather are subject to risk and uncertainty, some of which are beyond our control. These forward-looking statements apply as of today, and you should not rely on them as representing our views in the future. We undertake no obligation to update these statements after this call. For a more complete discussion of the risks and uncertainties, please see our filings with the SEC as well as in today's earnings release. I also want to inform you that we'll be attending the following conferences this quarter. The Baird Global Consumer Technology and Services Conference on June 2nd, the Bank of America Global Technology Conference on June 3rd, and the FBN Virtual Technology Conference on June 15th. And with that, I'll turn the call over to Jay.

Thanks, Kim, and thanks to everyone for joining us today. We delivered strong Q3 results. ARR grew 25%, and non-GAAP operating margin hit an all-time high at 23%. AI is changing the nature of cybersecurity in real time, and Zscaler is the cybersecurity platform for the AI era. This is evident in our results and the reason we are so confident in our long-term potential. We offer the industry's only complete zero-trust SaaS solution, a singular zero-trust platform across users, across cloud workloads, and across branches. Our architecture is purpose-built, to address the limitations of firewall-based SASE solutions and has several key differentiators. First, we hide applications and data behind our zero trust exchange, making them invisible from the internet and eliminating the attack surface. An attacker can't breach what it can't reach. Hence, this architecture provides far superior cybersecurity protection for our customers. Second, we eliminate lateral movement of attackers with our zero-trust architecture. We only allow authorized users and workloads to access specific applications. This reduces the blast radius of a potential breach, providing better security to our customers. This stands in stark contrast to competitors with firewall-based SASE architecture that connect users to the corporate network. And once a malicious actor gains a foothold on the network, it can roam freely and systematically attempt to compromise critical applications or steal data. This is how most ransomware attacks happen. Finally, scale matters, and our cloud-native Zero Trust Exchange is the largest distributed inline security platform in the world that spans across 160 public exchanges. processing more than 500 billion transactions per day. This gives us the best quality and quantity of telemetry data. Simply put, no other cybersecurity vendor has access to data sets with comparable fidelity and breadth. This high fidelity telemetry fuels our AI-powered security capabilities, continuously improving how we detect, prevent, and stop threats. These differentiators are especially important at a time when organizations are aggressively deploying AI applications and models with growing interest in AI agents at scale. We expect it won't be long before millions of AI agents have access to organizations' mission-critical applications and sensitive data. Today, users are the weakest link in cybersecurity, but soon, AI agents will be the weakest link. because they operate at far greater speed and have far less oversight. Even a single compromised agent can move from discovery to data theft in minutes, inflicting catastrophic damage on enterprises. Making it even more challenging, new powerful frontier AI models like Mithos are finding security vulnerabilities in software at machine speed. significantly diminishing the effort, skill, and time needed to breach enterprises. All enterprises already have thousands of known vulnerabilities that they haven't been able to patch. Frontier models are multiplying these unremediated vulnerabilities by as much as 10x, and even more powerful models that are currently being developed will undoubtedly make it worse. Enterprises don't have the capacity to patch and update existing vulnerabilities, so backlogs are piling up faster than organizations can address them. To tackle this challenge, the market needs to take a different approach. We provide the two most important defenses against these vulnerabilities. One, hiding applications from attackers. And two, eliminating lateral movement at scale. This validates the architecture we pioneered. Zscaler was built for this moment. We started with zero trust security for users so users can safely access applications from anywhere. Then we expanded our exchange to provide zero trust security to branches, workloads, and connected IoT devices. Now we are expanding our exchange to secure AI agents. An important element of agentic security is to understand which agents, users, and other identities are communicating with which models, applications, and data sources. On May 21st, we announced our intent to acquire Symmetry Systems, a company that solved this difficult problem. Symmetry provides an access graph that maps how identities, applications, and other data sources connect across the enterprise. We are integrating its AccessGraph technology with our Zero Trust Exchange. We are excited to share more about this at our Zenith Live user conference in Las Vegas next month. We are also partnering with Entropic on Project GlassWing and with OpenAI as part of its Daybreak program, formerly known as Trusted Access for Cyber, or TAC. which allows us to access frontier models to proactively harden our systems and deliver better security and resilience to our customers. Against this backdrop, investors have asked us, where is the ideal place to guard against AI threats? We are in the enviable position of having strong visibility and control across three critical vantage points for superior security, network, cloud, and endpoints. This is indispensable in enforcing real-time policy decisions. It is a powerful advantage for our customers and an important differentiator for Zscaler. We are enhancing our go-to-market engine across multiple dimensions to help highlight this differentiated approach. For example, we continue to deepen our partnership with Global System Integrators, or GSIs, who play a meaningful role in expanding the reach of the Zscaler platform. We're seeing strong growth in bookings through our GSI partners. We recently announced the launch of Project AI Guardian, a strategic collaboration with key GSI partners, which will help our partners extend the Zero Trust architecture to AI assets, including AI agents. GSIs will be able to leverage Zscaler's AI Protect portfolio to build specialized AI discovery and risk mitigation services. We are also continuing to expand our cloud marketplace motion. For fiscal 2026 year-to-date, we transacted approximately $900 million in TCV to our cloud marketplaces, which more than doubled year-over-year. This is becoming a more important route to market. as cloud marketplaces simplify procurement, align well with enterprise cloud commitments, and increasingly support larger strategic engagements. These investments are helping expand our reach, and Zscaler's unique architecture and approach for safe adoption of AI is resonating. This is evident in my conversations with customers and partners and why I believe AI is a catalyst for our business. Let me illustrate our progress with a few customer examples. In a seven-figure upsell deal, a Fortune 500 financial technology company chose Zscaler to secure rapid enterprise adoption of AI with our AI Protect solution, which we introduced in January. AI Protect includes AI asset discovery, AI guardrails, and continuous red teaming. Zscaler AI Protect provides this customer a single integrated way to discover and manage all AI assets, including shadow AI uses, enforcing safe access to approved apps, and inspecting every prompt and response in real time to stop data leaks and attacks like prompt injection. This customer faced a complex challenge of securing both employee interactions with public AI apps and their own suite of custom-built AI solutions. With our AI red teaming and AI guard capabilities, the customer moved from a manual reactive effort to an automated proactive approach to harden the growing number of AI applications. For customers building their own AI models and applications, our AI red teaming solution performs continuous security assessment. Our unified user interface and deep integration of multiple products is a key differentiator. Our AI Protect solution is resonating with customers with bookings crossing $100 million over the past 12 months. We are seeing inbound requests from across our customer base and our pipeline is robust and growing. In another customer example, we closed a seven-figure upsell with a federal agency that previously migrated from a legacy VPN architecture last year to Zscaler's Zero Trust platform. This agency is deploying Zscaler to modernize and unify its data security strategy, gaining broad coverage without the overhead of managing additional endpoint agents or the operational complexity of stitching together various data security products. With this expansion, The customer is now using six of Zscaler's eight data security modules across data classification, email DLP, endpoint DLP, and inline DLP, along with our GenAI security solution. The expansion underscores a broader momentum in data security, which crossed $500 million ARR up over 30% year over year. As AI adoption accelerates and sensitive data increasingly resides across multiple locations, customers are reducing cost and complexity by consolidating onto our data security solution. Turning to another customer example, during Q3, we signed the largest branch deal in Zscaler history. An eight-figure upsell with a leading healthcare system to deploy our unified Zero Trust Branch solution across 2,000 sites. Zero Trust Branch disrupts branch firewalls, software-defined Wide Area Networks, or SD-WAN, and MPLS networks. With this win, we're displacing both a major firewall incumbent and a legacy VPN incumbent. With Zscaler, the customer is eliminating lateral threat movement in their health clinics at roughly half the cost of its prior legacy solution. We are seeing particular momentum with Zerotus branch, where ARR has approximately tripled year over year. The next customer I'll highlight is a seven-figure new logo win with the leading healthcare technology company for a platform-wide adoption. This deal illustrates why customers choose Zscaler over incumbent firewall vendors the stickiness of our Zero Trust approach with CIOs and CISOs and our ability to convert a limited initial request into a comprehensive platform win. We received an inbound request for this particular customer after a senior technology leader joined from another customer where he had a great experience deploying Zscaler. He fully understood the difference between Zero Trust SASE and firewall-based SASE. While the initial discussion started around securing users, the company's top priority quickly became securing cloud workloads. The deal quickly grew into a comprehensive platform win, including Zero Trust Cloud, Zero Trust Branch, and four data security modules. The last customer win I'll highlight is a large automotive manufacturer that adopted our Zero Trust Cloud solution in a seven-figure upsell deal. This is a longtime Zscaler customer whose ARR is up tenfold in the last seven years. This quarter, the customer extended its existing Zscaler Zero Trust SASE footprint by expanding its deployment of Zero Trust Cloud, improving its security posture, and securing its massive multi-cloud environment. The customer can now inspect encrypted traffic and enforce granular security policies across hundreds of previously ungoverned cloud workloads. The deal also highlights the benefits of a Zero Trust Cloud solution, which was configured in under 10 minutes during the customer's proof of concept. Zero Trust Cloud eliminates virtual firewalls in data centers and cloud environments, reducing cost and operational complexity. The strength we're seeing in Zero Trust Cloud and Zero Trust Branch is driving the growth of our Zero Trust Everywhere enterprises that purchase each of our Zero Trust users, Zero Trust Branch, and Zero Trust Cloud. We exited Q3 with more than 700 Zero Trust Everywhere enterprises versus over 550 in Q2. Customers are recognizing that it is no longer enough to just secure their users, and our platform is the industry's only complete zero-trust SaaS solution across users, across cloud workloads, and across branches. In summary, we are confident Zscaler is the cybersecurity platform for the AI era. We expect AI and mythos like frontier models to be one of the strongest tailwinds our business has ever seen. Our zero trust SASE solution enables us to hide applications and make them invisible to attackers while also eliminating lateral movement. These attributes, along with our scale, are true comparative differentiators for Zscaler. With frontier models uncovering vulnerabilities at unfathomable speeds and AI agents becoming the weakest link in cybersecurity, These differentiators have never been more important than they are today. Our approach is resonating and helping to drive significant wins that demonstrate our ability to attract new customers and further penetrate our installed base of more than 9,400 customers. Among those, we serve just 4,500 enterprises out of a potential 20,000 enterprises in our primary target market. We are confident that our innovative approach to staying ahead of threat actors will help to drive further share gains. With the significant long-term growth potential, we are well positioned to continue creating significant value for shareholders. Now, I'll hand it over to Kevin to walk through the financials.

Thanks, Jay. We delivered strong Q3 26 results, growing revenue 25% while investing with discipline. Year to date, with 26% revenue growth and a 29% free cash flow margin, we achieved Rule of 55 performance. Our Q3 26 net new ARR was $166 million, up 24%, bringing total ARR to $3.5 billion, up 25% year-over-year. Net new ARR benefited from strength in the public sector vertical, which includes state, local, and federal government and healthcare, including an approximate eight-digit upsell at a federal agency. Net New ARR also benefited from strength of large deals in APJ, where the deal value from $1 million-plus deals increased more than 150% year-over-year. Excluding the contribution from our acquisition of Red Canary, Net New ARR was $153 million, up 14% year-over-year, and Total ARR was also up 21%. Red Canary exited Q3 with $127 million of ARR. We have steadily expanded our Zero Trust platform beyond users to protect branches, workloads, AI applications, and now AI agents. We believe AI agents will drive a meaningful increase in machine-to-machine and agent-to-agent interactions over time. In Q3, our non-seat-based metered usage solutions delivered just over 30% of new ACV, and the ARR tied to those offerings grew more than 100% year-over-year. Revenue of $850 million grew 25% year-over-year and 4% sequentially, exceeding the high end of our guidance. We closed Q3 with 748 customers generating more than $1 million of ARR and 4,003 customers exceeding $100,000 of ARR, growing 18% and 19% year-over-year, respectively. We also set a record $1 million plus new ACV deals for a Q3. On a geographic basis, we saw strong growth from the Americas, which accounted for 56% of revenue, up approximately 31% year-over-year. AMIA accounted for 28% of revenue, up approximately 16%, and APJ for 16%, up approximately 23%. Remaining Performance Obligation, or RPO, of approximately $6.5 billion grew approximately 30%, including approximately 46% classified as current RPO. Our go-to-market strategy is a key growth lever, enabling us to deepen customer relationships, accelerate platform adoption, and expand multiyear engagements. Building on Jay's earlier comments on enhancements to our go-to-market engine, we are continuing to strengthen our position as a long-term strategic partner and driving deeper customer adoption over time through our account-centric sales motion. We saw strong momentum this quarter with ZFlex. ZFlex gives customers with multi-year commitments the flexibility to activate or swap modules without starting a new procurement cycle, along with premium deployment assistance and support. This program is driving meaningful upsell, shorter sales cycles, and greater forward visibility. In Q3, ZFlex generated just over $480 million in TCV, up more than 60% quarter over quarter. We have delivered over $1 billion in ZFlex TCV over the last 12 months and an average four-year term, underscoring customers' long-term commitment to Zscaler. To share a couple customer examples, in a five-year, eight-figure ZFlex deal, a Fortune 500 finance and insurance customer that spends more than $5 million with us annually increased their ARR by nearly 50%. expanding module adoption across four existing modules and adopting six new modules, including our AI Protect solution. In another example, an existing seven-figure ARR Global 2000 semiconductor manufacturing customer increased their annual spend with us by 60% in a three-year, eight-figure ZFlex deal. This customer expanded adoption across six existing modules and adopted six new modules, including our AI Protect and Zero Trust branch solutions. Turning to operating performance, non-GAAP gross margin was 80.7% compared to 80.3% a year ago. Non-GAAP operating income of $196 million grew $49 million, or 34%, as compared to $147 million last year. Non-GAAP operating margin of 23% increased 140 basis points year over year, demonstrating leverage on sales and marketing. Turning to the balance sheet, we ended the quarter with $3.5 billion in cash, cash equivalents, and short-term investments, and $1.7 billion of debt. In Q3, we generated $198 million in operating cash flow. and CapEx was $42 million, or 5% of revenue. This equates to a free cash flow margin of 16% this quarter, down from 18% last year, reflecting the timing of cash collections and a free cash flow margin of 29% year-to-date. Looking ahead, I'd like to spend a minute and provide an update on increasing memory, storage, and processor prices and availability. As a reminder, we purchase equipment for our data center and Zero Trust branch appliances. To mitigate costs, we put through a price increase on our branch appliance earlier this calendar year, which we expect to flow through in the next several months. We are also being opportunistic and taking advantage of delivery of data center equipment where we can get it to lock in today's prices ahead of potential increases in the future. This is pulling forward some of the investments we expected to make in fiscal 27 into Q4. As a result, we expect higher CapEx in Q4 taking Fiscal 26 CapEx to the high single digits as a percentage of revenue, up from our prior expectation of mid-single digits. Looking ahead to Fiscal 27, based on higher prices we see in the market today, we expect CapEx as a percentage of revenue to increase up to 200 basis points compared to Fiscal 26 levels. We'll continue to monitor our costs and share regular updates about the impact. Turning to guidance. At the end of the third quarter, two sales leaders departed the company. We already appointed a replacement for one of these leaders, and we are in the late stages of hiring a leader for the other role. However, we are taking a prudent approach to our guidance during this transition. Let me provide our outlook for Q4 and full year fiscal 26. As a reminder, these numbers are all on a non-GAAP basis. For the fourth quarter, we expect... Revenue of $875 million to $878 million, reflecting approximately 22% year-over-year growth. Gross margin of approximately 80%. Operating profit of $206 million to $208 million, up to approximately 30% to 31% year-over-year. Net other income of approximately $24.5 million. and earnings per share of approximately $1.08 to $1.09 per share, assuming a 21% tax rate and 168 million fully diluted shares. For the full year fiscal 2026, we expect ARR of $3.740 billion to $3.749 billion, or year-over-year growth of approximately 24%. This guidance implies net new ARR growth excluding Red Canary of approximately 9.5%. For Red Canary, we expect ARR of approximately $137 million in fiscal 26, up from our prior guidance of $130 million, with net new ARR of approximately $10 million in Q4. This includes all the business expected in each period, including fiscal 26 renewals, upsells, and new logos. Revenue of $3.3295 billion to $3.3325 billion, reflecting year-over-year growth of 24.6% to 24.7%. We expect Red Canary revenue of approximately $137 million in fiscal 26, up from our prior guidance of $125 million. Operating profit of $755 million to $757 million, up approximately 30% year-over-year, up from our prior guidance of $742 million to $748 million. Earnings per share of $4.10 to $4.11, assuming a 21% tax rate and approximately 168 million fully diluted shares. And free cash flow margin of approximately 22.8% to 23.3%, down from our prior expectations of 26.5% to 27%, reflecting CapEx in the high single digits as a percentage of revenue. Looking to fiscal 2027, I'd like to provide some early perspectives to better align expectations heading into our second year with ARR as our primary growth metric and following the acquisition of Red Canary. Sitting here today, our view is for total ARR and revenue growth for fiscal 27 of 16 to 17%. Looking ahead, we are excited by the opportunities we see to continue scaling our rapidly expanding AI security portfolio, accelerating Zero Trust Everywhere adoption, and growing our data security revenue. In summary, we are pleased with the results we delivered year-to-date in fiscal 26. We achieved 25% year-over-year ARR growth and record operating income. We also saw continued momentum with ZFlex and closed a record number of $1 million-plus ARR deals for a Q3. The opportunity ahead of us is substantial, and we are confident in our ability to continue driving profitable growth across multiple vectors, including product innovation, go-to-market, and customer expansion, and creating value for our shareholders. I want to thank our employees, customers, and partners for their continued support. With that, operator, you may now open the call for questions. Thank you.

Thank you. As a reminder, to ask a question, you will need to press star 11 on your telephone. To remove yourself from the queue, you may press star 11 again. Please limit yourself to one question, then return to the queue. Please stand by while we compile the Q&A roster. Our first question comes from the line of Brad Zelnick of Deutsche Bank. Your line is open, Brad.

Great. Thank you so much. A lot of strong proof points in these results. Maybe a compound question since you're limiting me to one for both Jay and Kevin. I'm just trying to better understand the sales leadership turnover that you highlighted. Jay, if you can comment at all whether these positions, the turnover was voluntary or involuntary, how senior they were, and why this could have an impact. when you have such a mature and resilient sales organization, and then maybe for Kevin on the same topic, is the pipeline there and you're just assuming a lower close rate? What would your guidance have been if these leaders were still in place?

Thanks so much.

Okay, I'm Brad.

Thank you.

So regarding the sales leadership changes, these two leaders were part of our CRO of my purchase team. It is true that Mike has built a strong bench. He has built a strong sales engine. We just want to be prudent that as these changes are made, it could have impact in the short term, and that's what we're keeping in mind. Kevin?

Yeah, thanks, Jay, and thanks, Brad. Yeah, I don't have much more to offer other than, you know, we are taking a prudent approach. We do recognize when leaders of this nature are change that it can have some disruptive nature to those organizations. So I'm just taking a prudent approach to how we think about those changes.

Thanks, Brad. And the only other thing I'll add, Brad, is that there will be changes in leadership from time to time.

And regarding these two, we have already appointed an internal replacement for one of these. And the second one, we are making progress. and we expect to close that in the near future as well.

That's helpful. Thanks so much for taking the question. Thank you.

Our next question comes from the line of Sackett Kalia of Barclays. Your line is open, Sackett.

Okay, great. Hey, guys. Thanks for taking my question here. Kevin, maybe for you, Can we just speak to how big the eight-figure federal deal was here in Q3? I guess the question is, if we exclude that deal, how do we maybe feel about the underlying flow business, whether it's new or renewals? Again, excluding that large deal, which was great to see. I'm just curious how you look at the business if we exclude it, if we could size that.

Yeah, thanks, Socket. I mean, look, at the highest of levels, you know, we delivered a strong Q3, and I think we're very pleased with the results of the business. As it relates to the eight-figure upsell that I called out, you know, keep in mind that these contract wins, as you see them get reported, first of all, it is TCP, and second, that along with the upsell was also a large part of that deal was renewal. So that's already pre-existing in ARR as you think about that particular deal that you were querying.

And Socket, if I may add, you've seen in the past, if these are unusually large, we point them out.

So nothing unusual about this. Very helpful. Thank you. Thanks, Socket.

Thank you. Our next question comes from the line of Joshua Tilton of Wolf Research. Please go ahead, Joshua.

Hey, guys. Thanks for sneaking me in here. Appreciate the early look for the numbers next year. When you look at the growth and kind of what it implies for net new ARR, you guys are kind of calling flat on an organic basis from the guide for this year. Can you kind of help us maybe think about the moving pieces between where that's coming from, whether that's the traditional descaler business or red canary, or just any color to help us think about, you know, the trajectory of organic net new ARR next year in that guide. Thank you very much.

Yeah, I'll go ahead and start, and Jay can append. This is how I thought about... the different components as we were giving you guys an early look. And I just want to call out, we don't typically provide this type of guidance this early in the year going into the following, but we thought it was important to give you an understanding of what we're seeing. So first of all, we have a pretty strong track record of upsells, and I expect that that is going to continue into 27. You may recall that we had a net retention of 115% in Q1, and that has been fairly stable the last several quarters. The area that we haven't been performing as well as we'd like is new logo. It certainly is a large priority for us, but I did take a tempered view of new logos going into 27. And then lastly, as we think about Red Canary and its contributions, We will be rolling out the integrated SecOps solution that will be available, we would expect, in 27. What I don't know is the pace of uptake amongst the existing customers for that. So as a result, as we think about Red Canary, we are expecting Red Canary's net new ARR to grow at a slower rate than the overall business at 27, as you think about bottling. And also keep in mind that Red Canary will be included in our results going into next year as it will be fully baked into 26. So we will not be providing separate disclosure of Red Canary in 27.

If I may add, look, we already covered the fact that same leadership position has been part of our thinking to make sure you understand that it may have some impact. But if you look at the overall market opportunity, Mithos has shed some more light on it. Every CIO, every CISO I talk to is talking about protecting its Mithos. An interesting part is while Mithos is about finding new software vulnerabilities and fixing them, people already have, enterprise already have tons of vulnerabilities. The number one protection they're looking at doing is hiding their attack surface. Number two they're trying to do is zero trust access. And we fairly uniquely provide those things. So while we were prudent in our forecast, the need for Z-scaler today, especially post-need beetles, is probably far greater than it has ever been.

Super helpful, guys. Thank you. Thank you.

Thank you. Our next question comes from the line of Greg Moskowitz of Mizuho. Please go ahead, Greg.

Great. Thank you very much for taking the question. You did very well this quarter in the Americas and APJ, although growth in Europe slowed. What are you guys seeing in Europe? And then just wondering if you have any commentary on the competitive environment, both in the Americas and in Europe. Thank you.

So if you think of the overall competitive environment, I don't think things are very different in Europe than the rest of the rest of the world. You know, you have seen us from time to time, GOA may do better in a given quarter, and GOB may do better. But I think we know some of the areas of execution we need to improve.

We are focused on it, and I'm pretty sure that we'll turn it around and make EMEA again a high-growth area. Okay, thank you.

Thank you. Our next question comes from the line of Gabriela Borges of Goldman Sachs. Your line is open. Please go ahead, Gabriela.

Hi, good afternoon. Thanks for the question. Kevin, you mentioned something interesting there when you were talking about the outlook for next year, which is that new logo growth may be tempered. And so either for yourself or for Jake, Maybe just give us a sense, when you dig beneath what's going on with the sales relationships, with the customer pipeline, why do you think new logo growth is temporary? Thank you very much.

Yeah, thanks, Gabriella. Just to clarify, I was not trying to suggest that new logo growth is temporary. What I was intending to convey is that my expectations relative to the early look for next year took a thought about the contributions of new logos new logos is a strategic focus of ours and you know as we go into 27 it will continue to be so but again I'm providing an early look here far earlier than we would normally do and so as I looked at what we had in front of us in terms of the different components of the business that was one area where I think we can do better if I may add there's a sizable new logo opportunity for us

We have 4,500 enterprises as our customers, and those enterprises are customers with over 2,000 user seats. And out of the 20,000, 4,500 are our customers. That's what 23%.

That means a sizable market for us to go after. Thank you for the call.

Thank you. Our next question comes from the line of Brian Essex of JPMorgan. Your line is open, Brian.

Great. Good afternoon. Thank you for taking the question. Jay, if I could maybe ask you to peel back the layers a little bit on the impact of Mephos and OpenAI models. You know, what we're hearing from maybe some of the channel providers is that, you know, the C-suite executives at enterprises are, maybe to use their words, freaking out. over the emergence of these models and the realization of how robust they are. So when you comment about some of the tailwinds in your business on the back of the emergence of these foundation models, how do you see that materializing in your pipeline? It sounds like the consultants are very busy right now, but given the typical sales cycles that you have and maybe the architectural decisions that are involved with adopting your Zero Trust platform, When might we expect to see some kind of impact to pipeline revenue billings and so forth? And how is this materializing with your conversations and how your pipeline might be materializing? Thank you.

It's a very important question, Brian. We've never seen so many inbound calls come in so quickly. I got so many calls that I decided to say we will reach out to them and figure out a programmatic way of engaging with them. I don't need to dig into the detail of their concern. We all know they're very concerned and they're looking for help. So it is interesting that most of the customers and vendors are taking the approach that let me help you find more and more vulnerabilities and trying to patch them. While patching is a reasonable approach, we do not think the primary focus needs to be patching. because you will never be done patching. So our recommendations are very clean. Finding your applications that I talked about, zero trust access. Those are fundamental things that need to be done, and that's what we're helping our customers with. Now, we also know that this is an area where we need to help our customers and not do ambulance chasing. So we're not rushing to create opportunities. We are actually engaging with our customers in a consultative fashion. to help them get out of the tough situations so they can really keep the board and CEOs apprised of what's going on. Now, obviously, there are areas these customers need to worry about. We aren't really factoring in any meaningful impact of the new opportunities for Q4, but I do believe it'll have impact in fiscal 27. The short-term impact, if I were to give you a couple of specifics, Number one, many customers have ZIA for all users, but Zscaler private access is only for subset of users. Now they want zero trust access for everyone from every location, even from the headquarters. So it's increasing interest for ZPA upsell. We have very cool deception technology. It's a decoy technology. Customers want this technology because they know that With all this happening, there will be more breaches, and they want to catch them red-handed using deception like a star. So that's why I said sometimes I feel like it's a forward-like moment. Zero trust has never been more important before. Thank you.

Helpful color. Thank you.

Thank you. Our next question comes from the line of Metta Marshall of Morgan Stanley. Please go ahead, Metta.

Great, thanks. Maybe building on a couple of the questions, just as we think about kind of signposts that you guys are looking at for improvements on the new logo side, you know, will that come from some of the GSI channel outreach that you guys are – expansion that you guys are doing? Will that come with some of the new leadership, you know, flexible pricing? Just trying to get a sense of what you think is kind of the most incremental to improve the measures that you laid out to improve the new logos. Thanks.

Thank you. So we have very specific plans we are formulating, and they'll be an important part of our fiscal 27 plan. Number one, We have a limited coverage in the lower end of the market. When I say lower end of the enterprise market, it's generally between 2,000 and 10,000 users. As you know, the high end coverage is pretty strong. So adding more salespeople in that part of the market where coverage is less, number one. Number two, the channel, especially the VAR channel, plays an important role in the lower end of the market. So we are creating specific programs and incentives for new logo in that area. Number three, the GSIs have been good partners. GSIs are generally good partners for large enterprises. So we are teaming with them for this area. You heard about AI Guardian program we launched with that. That's a natural extension of the work we're doing. Number four, we have a program for major accounts. We're going to make sure we do some more focus on those teams to get new logos in addition to working on upsell. I think we feel pretty good about the opportunities to engage and do this stuff and a little bit more incentive to new logo versus we haven't done a whole lot in the past.

This will probably make a difference. Great, thanks. Thank you.

Our next question comes from the line of Ita Kidron. of Oppenheimer and Company. Your line is open.

Thanks. I appreciate it, guys. Kevin, I just want to make sure I get my bearings right around the ARR and the commentary there. Taking into account your revised guidance for the year and your preliminary viewing to next year, it looks like your fourth Q net new ARR again is decelerating quite substantially, and it's probably also in the going back to meet single-digit growth only into next year, so another deceleration. I just want to get my hands around, outside of the sales leadership that you've talked about, are there any other elements to take into account here with respect to this? You guys have made a lot of work over the last couple of years kind of turning around the sales force. I understand that when two leaders leave, clearly, some disruption can happen. I'm just wondering if that is the only element impacting the new ARR here. Are there other things to take into account? Thank you.

Yeah, thanks for the question. I mean, look, the two factors that I think are important, you certainly mentioned one in terms of the two leaders under Mike that we commented on. It's just a reality when you have leaders that do depart that you may see some disruption. And so I'm just taking a prudent approach to that potential disruption. The other thing that I commented on is just the pace of uptake with the integrated SecOps products. So as we think about how that rolls out and what that pace of uptake is, I'm also taking a prudent approach there. As it relates to Q4, so the guide implies 9.5% net new ARR growth on an organic basis, excluding Red Canary. And just keep in mind, you know, that's still an acceleration over what we put up last year.

So keeping everything in perspective.

I appreciate it.

Thank you. Our next question comes from the line of Eric of B. Reilly Securities. Your line is open, Eric.

Yeah, thanks for taking the question. On that outlook for fiscal 27, I think you had commented last quarter that the ZIA, ZPA core products were growing in the mid-teens. What growth assumption are you assuming as you look out to 2027 on those core products?

Yeah, thanks for the question. I mean, it's a little bit early, and that's a fairly granular element. What I can say is that we've continued to see consistent performance this year within the ZIA, ZPA product lines, but we didn't provide that level of granularity into next year.

If I may add, quite often questions get asked about core products versus known core products, as if they're two separate buckets altogether. I think As we have been saying, our customers are asking for zero trust everywhere. We started with zero trust for users, which is CIS, EPS, EVX. That was part one. Now they're all moving towards zero trust for cloud workflows and then zero trust for branches and IoT devices. So our number one push is to work with customers to do zero trust everywhere. That's a big differentiation for us and an opportunity to sell bigger deals while others who claim to say we do what the eSkiller does are barely trying to build 0 to 1000 users would be matured over the last many, many years.

Thank you.

Thank you. Our next question comes from the line of Adam Borg of Stifel. Please go ahead, Adam.

Awesome, and thanks for taking the question. Maybe just on symmetry systems, I would love to learn a little bit more about what that brings to you that you couldn't do previously around securing AI agents. And given their access graph technology, how are you thinking about the movement to identity security more broadly? And maybe just as a quick follow-up, any color on symmetry and even square X in terms of contribution to revenue and AR. Thanks.

So first of all, symmetry has built very innovative technology. So what's the problem statement? It's not really basic identity. We believe the identity of agents will really come from companies such like hyperscalers or large software companies who are actually providing platform to build agents. They are the natural place to build identity. So trying to be an identity couple for agents or someone outside these big guys will be a hard thing. We have always taken the approach of being a social man. where we will take identity from different corners. So then what's Symmetry? Symmetry pioneered identity mapping to data sources. So think of this way. In a large enterprise, all these identities, maybe users, workloads, maybe other machines, they access data sources that may be sitting out there somewhere. How do you know who is accessing what, when, where? Information sets that reach application logs. Smitri pulls that information and creates a very cool visual access graph. This was a hard problem to solve. So this was solved by a bunch of PhDs. Once you understand who talks to who, this solution, this thing can be used to enforce policy for a genetic exchange that we're building. So it's very complementary, forward-looking technology. This is the kind of stuff most companies aren't thinking about. Zscaler has always taken pride in being innovative and coming up with solutions that no one else has built. So our zero-toss exchange got extended to zero-toss exchange for agents, and this becomes a very useful piece to highly differentiate our exchange and provide value for data governance and policy enforcement for our customers.

Did I answer your question? That's really helpful. And just, Kevin, maybe any color just on top line for Symmetry and SquareX. Thanks again.

Yeah, yeah, of course, of course. You know, so as Jay mentioned, just the level set, you know, Symmetry is a technology and talent acquisition. ARR is immaterial and is in the low single digits. I think you also asked about SquareX.

That was also incredibly immaterial.

Really appreciate the color. Thanks again.

Yeah, thank you.

Thank you. Our next question comes from the line of Fatima Bulani of Citi. Please go ahead, Fatima.

Thank you for taking my question. Kevin, just on some of the commentary with respect to the opportunities to step on the gas pedal vis-a-vis new logo acquisition and in the context of the sales leadership transitions, can you give us a quantified and quantitative quantification of sales productivity this year and some of your expectations as you think about the complexion of the 16 to 17% guide. Again, largely tied to some of your comments earlier around, you know, building out more of a capacity presence with the lower end of the enterprise. We'd love a little bit more quantitative color on some of the sales productivity slash sales attrition and sales hiring quantum that you're thinking about in terms of pipeline build and conversion and productivity assumptions. Thank you.

Yeah, thank you for the question. Look, for Q3, this was our sixth straight quarter of sales productivity growth, even on the back of some tough compares. So I think we've done I think we're very pleased with the level of productivity that we've seen, continued improvement that we've seen. I would expect going forward into fiscal 27 that we'll continue to see success in driving productivity and capacity. I just caution that it's a bit early to provide quantification of how that rolls into an early look for 27.

Thank you.

Thank you. Our next question comes from the line of Gray Powell of BTIG. Please go ahead, Gray.

Great. Thanks for taking the question. Maybe just one on the competitive front. So just from a technology perspective, how are you staying ahead of the firewall vendors who are increasingly trying to upsell Secure Service Edge into your installed base? And when you do have displacements of legacy vendors, is there like a common driver? Is it like a particular set of features or is it just the overall platform and just, you know, that your technology is better? Anything you could say on that would be helpful. This is pretty simple.

If you care about real cyber protection, you know that you need zero trust architecture. Firewalls create trusted network. Trusted networks enable lateral movement. So our customers understand that. They started with zero trust for users. Now they want zero trust for branch, where each branch becomes an island, like a cafe. Firewalls don't do that. They want zero trust device. Firewalls don't do that. They want zero trust of workloads. Workloads have been secured traditionally by 30-year-old firewall technology, east, west, north, south firewall rules. We do it in zero-trust fashion. So we are on a roll to take our customers to zero-trust everywhere. That is our biggest differentiator.

It's not feature A or feature B. It's an architectural difference. Okay. Thank you very much.

Thank you. Our next question comes from the line of Andrew DeCasperi of BNP Paribas. Your line is open, Andrew.

Thanks for taking my question. I wanted to ask about the comments on the CapEx guide. And really what I wanted to touch on is, given you've put together price increase earlier this year, and now these costs have gone even higher, are you considering potentially doing the same maybe at the same time next year?

yeah thanks for the question I'll start you know look we are constantly looking at you know the the balance between you know pricing margin and you know market prices and feel pretty good at where we are we did push through a price increase earlier this year and have not seen any any implications of that I think the world is recognizing that hardware costs have gone up but we do periodically review pricing and where we have opportunity to increase. So we do take advantage of that. I don't know that I would want to sit here today and say at this time next year there will be another price change.

It is something we look at more dynamically than that. But this situation you're talking about is fairly unique.

It's created by all these AI data centers that's causing such a shortage in so many parts. But as Kevin said, we'll look at it from time to time.

But this became a special factor that all of us recognize and adjusting accordingly for it.

Thank you. I would now like to turn the conference back to Tej Audrey for closing remarks. Sir?

Thank you for joining us for our earnings call. We look forward to seeing you at one of the upcoming investor conferences. Thank you again.

This concludes today's conference call. Thank you for participating. You may now disconnect.