Earnings Call: Q2 2022

Aug 31, 2021

You for standing by, and welcome to the CrowdStrike Holdings Second Quarter Fiscal Year 2022 Financial Results Conference Call. At this time, all participants are in a listen only mode. After the speakers' presentation, there will be a question and answer session. As a reminder, today's conference call is being recorded. I would now like to turn the conference over to your host, Ms. Maria Rowley, Vice President of Investor Relations. Please go ahead. Good afternoon, and thank you for your participation today. With me on the call are George Kurtz, President and Chief Executive Officer and Co Founder of CrowdStrike and Bert Podver, Chief Financial Officer. Before we get started, I would like to note that certain statements made during this conference call that are not historical facts, including those regarding our future plans, objectives, growth and expected performance, including our outlook for the Q3 fiscal year 2022 are forward looking statements within the meaning of the Private Securities Litigation Reform Act of 1995. These forward looking statements represent our outlook only as of the date of this call. While we believe any forward looking statements we make are reasonable, Actual results could differ materially because the statements are based on current expectations and are subject to risks and uncertainties. We do not undertake and expressly disclaim any obligation to update or alter our forward looking statements, whether as a result of new information, future events or otherwise. Further information on these and other factors that could affect the company's financial results Included in filings we make with the SEC from time to time, including the section titled Risk Factors in the company's quarterly and annual reports that we file with the SEC. Additionally, unless otherwise stated, excluding revenue, all financial measures discussed on this call Will be non GAAP. A discussion of why we use non GAAP financial measures and a reconciliation schedule showing GAAP versus non GAAP results It's currently available in our press release, which may be found on our Investor Relations website at ir.cloudcheck.com or on our Form 8 ks filed with the SEC today. With that, I will now turn the call over to George to begin. Thank you, Maria, and thank you all for joining us today. We delivered an outstanding second quarter with rapid subscription revenue growth And record net new ARR generated in the quarter. We saw strength in multiple areas of the business, Added $150,600,000 in net new ARR and grew ending ARR 70% to exceed 1 point $3,000,000,000 Our continued strong performance was driven by the groundswell of customers turning to CrowdStrike As their trusted security platform of record, we saw strong demand across the market, which for us spans large enterprise, Mid market and SMB customers. Our success in gaining share in each of these market segments is reflected in our net new customer growth rate, which on an organic basis accelerated in the quarter. In total, 1660 net new customers chose CrowdStrike As their security partner, bringing our customer count to 13,080. The CrowdStrike brand is viewed as the gold standard in security. We designed the Falcon platform and our security cloud to add value and improve the security posture of any organization regardless of size and sophistication. Customers new to CrowdStrike this quarter included a household name in the consumer security space, One of the largest non profit healthcare organizations in the United States, a Fortune 50 global insurance provider And our security partner Proofpoint, who we are excited to deepen our relationship with as both a technology and security partner. I'm also pleased to highlight that Workday, a cloud pioneer and leading provider of enterprise cloud applications for finance and human resources, which CrowdStrike also uses has now standardized on CrowdStrike Falcon across their multi OS fleet. The threat environment remains fierce as expanding attack surface and inherent vulnerabilities in widely used operating systems Along with the complexity of Active Directory, we've companies of all sizes open to attack and provide a rich feeding ground for sophisticated And novice ecriminals alike. The lessons learned from recent attacks emphasize that a breach involves more than just malware, which is why companies need to employ a holistic breach prevention strategy rather than overly relying on malware prevention regardless if it's legacy or next gen. As I have said before, nearly every breach you have ever heard of had 2 things in common. The victims had both a firewall and an antivirus solution, which is why we built the Falcon platform from the ground up to stop breaches And not just prevent malware. With this mission, CrowdStrike has turned the tables on the adversaries and has become a trusted leader in security. Meanwhile, competitors fall further behind as they continue to blindly promote a strategy that relies on malware prevention Versus a comprehensive solution focused on people, process and technology that stops breaches. According to recent data from our customer base index by Threat Graph, more than half of detections analyzed were not malware based. Attackers are increasingly attempting to accomplish their objectives without using malware. They are exploiting the proliferation of vulnerabilities and abusing systemic weaknesses in identity architecture to get on the system and then moving laterally, thus making it more difficult for legacy and next gen malware focused products to be effective because they are not focused on breach prevention. To further demonstrate my point, I'd like to share a recent customer win with a Fortune 500 company that was using Microsoft's legacy security products It failed to rise to the challenges of today's adversaries and ended up unnecessarily costing them 1,000,000 of dollars. This company experienced a long and difficult deployment process, particularly in low bandwidth environments where endpoint performance was critical. Notably frustrated, this company began to evaluate alternatives when it was unfortunately hit by ransomware that encrypted their primary and backup data, Causing weeks of business disruption and a financial impact estimated to be in the tens to 100 of 1,000,000 of dollars. This is when they turn to CrowdStrike. 1st, by bringing in our incident response team to remediate and stabilize their IT operations And followed by deploying Falcon Complete across their environment. Our approach to stopping breaches with the Falcon platform It's foundational to CrowdStrike's leadership position in the market and the epicenter of restoring trust to the security posture of companies worldwide. Using AI, machine learning and an intelligent lightweight agent, the Falcon platform defends against today's most sophisticated threats With unmatched speed and simplicity, CrowdStrike's Threat Graph combines a massively scalable threat intelligence database With AI powered analytics to detect, prevent, predict and mitigate advanced attacks and 0 day exploits, ThreatGraph and Falcon's XDR capabilities continuously ingest massive volumes of live telemetry data From Falcon endpoints and other sources at scale, the Falcon platform processes approximately 1 trillion events per day From millions of agents delivering unprecedented security insights. This empowers Falcon to benefit from Crowdsourcing and economies of scale unlike any other solution on the market today, which we believe enables our AI algorithms to be uniquely effective. The success of our platform strategy and growing leadership as the trusted security partner of choice is also reflected in our module adoption metrics, which we have continued to increase quarter after quarter. Subscription customers that have adopted 4 or more modules, 5 or more modules and 6 or more modules increased to 66%, 53% 29%, respectively, in the 2nd quarter. We believe that our extensible Falcon platform, Purpose built to collect data once and reuse it many times to address multiple use cases not only provides customers An advantage over adversaries and lowers TCO, it is a cornerstone to building a durable growth business over the long term. As we innovate on the platform, customers can derive even more value from their Krauszfreak investment. Take for example a midsized healthcare organization who despite their limited budget and security staff was looking to bolster its security in the wake of repeated attacks against their peers. This organization initially thought they only needed to add a SIEM solution, but quickly realized The implementation and maintenance would be a burden to their current security posture. Whereas with CrowdStrike Falcon Complete, Falcon 0 Trust and Humio, they could transform their security posture, have round the clock monitoring, Gain identity visibility and risk scoring and implement a highly effective log management solution for less than the cost of purchasing a standalone SIM product. This customer was also amazed by Humio's speed of ingestion and ability to query data in real time, which they deem critical given the rise in malicious cyber activity targeting the healthcare sector. Customer interest in Humio is very high as the ability to log everything and get answers in real time is a growing necessity. In Q2, we secured new Humio deals across multiple industries, including technology, healthcare, Hospitality and Financial Services. Additionally, Humeo is already off to a great start in Q3 With a 7 figure land and growing pipeline, the integration of Humio into our already market leading XDR capabilities is on track and we are encouraged by the growth opportunities we see in this area. We look forward to showcasing more of our leading XDR capabilities at Falcon In October, I will now highlight several of our cloud modules that are gaining exceptional traction with customers as the threat landscape has intensified. First is Falcon Complete, our turnkey managed detection and response subscription. The heightened threat environment has put a significant strain on cyber resources and has exacerbated the skills gap in the industry. Recent reports indicate that over 3,000,000 cyber jobs are unfulfilled, which is more than double the current number of professionals currently working in the field. Falcon Complete combines the advantages of our security cloud, The technology in our Falcon platform and a team of threat hunters and responders to deliver gold standard security around the clock At scale with superior economics to organizations of all sizes. This translates to stopping breaches that extend far beyond the prevention of malware and that leverage legitimate software or services, exploit system misconfigurations or abuse legitimate credentials. In recent quarters, we have seen a significant increase in the Falcon Complete customer base, which has grown approximately 2.5 times year over year. Additionally, just last week, Falcon Complete was named a leader in IDC Marketscape for U. S. Managed Detection and Response Services. Within the report, Falcon Complete was recognized for strengths in its breach prevention warranty, fully remote automated remediation, Breadth of threat hunting capabilities and strong machine learning and artificial intelligence capabilities for detection and response. The next module on the Falcon platform I would like to highlight is Falcon Spotlight, which leverages the power of the cloud to provide real time vulnerability assessment and AI to prioritize vulnerability remediation without impacting performance of the network or endpoint. Real time vulnerability management is becoming a necessity for a proactive security posture given the continued targeting of core functionality And vulnerabilities in the Microsoft ecosystem and increase in 0 day exploits such as the recent Microsoft Print Nightmare vulnerability. Demonstrating the power of Falcon's network effect, we leveraged the massive amount of data and intelligence available in our security cloud, In our AI model to predict that this newly discovered vulnerability would be exploited by adversaries. Using this data intelligence allowed us Our ability to provide real time vulnerability management Significantly differentiates CrowdStrike and it's directly attributable to the fundamental architecture of our cloud native Falcon platform that enables us to collect data once and reuse many. We believe our success to date with Spotlight is an excellent of our ability to leverage the CrowdStrike Security Cloud to stop breaches and drive module adoption. Spotlight's ability to provide visibility in real time into print nightmare exposure without deploying new agents or scanning was a significant driver of no touch trials generated through the CrouseRakes store. Spotlight has also become strategic in the sales process With the number of spotlight customers growing more than 150% year over year in Q2. Next, I will briefly discuss 0 Trust. The recent Kaseya breach, which is reported to have impacted over 1 1,000 Companies from a Single Breach serves as a reminder to the far reaching impact of a supply chain breach and the importance of a 0 Trust architecture. It is also important to remember that most ransomware outbreaks have a compromised identity component. Shoring up this threat vector is Critical to stopping breaches and lateral movement. Customers are increasingly turning to a 0 Trust solution To combat threat actors that leverage identity based attacks and move laterally within their targeted environments. CrowdStrike has the only 0 Trust solution on the market today that combines endpoint, workload and identity visibility and behavioral analytics to secure environments and prevent lateral movement. Moving to cloud. More and more organizations are waking up to the fact that adversaries do not draw much of a As an innovator in cloud security and Operator of 1 of the largest clouds, organizations are turning to CrowdStrike to protect their cloud estates. I'd like to share with you a recent customer win that demonstrates how cloud native organizations can leverage the Falcon platform To achieve best in class security that empowers their business model instead of clashing with it, a cutting edge enterprise AI platform company And a member of the Forbes Cloud 100 was experiencing stability and scaling issues when trying to use a competitor's cloud security offering That was built through M and A. As a company on a mission to reduce their own customer friction and deliver actionable intelligence, they felt it was critical That their security partner could match their speed and scale in the cloud instead of slowing them down. With these requirements in mind, This cloud innovator selected CrowdStrike for its ability to provide a fully integrated and fully managed cloud solution Through a single pane of glass with a single team. This customer purchased Falcon Complete with Cloud Workload Protection And Falcon Horizon to fully manage both their traditional endpoints and cloud workloads. This new customer found immense value in Falcon's cloud offerings across their EC2 and AWS Fargate infrastructure, making CrowdStrike the perfect partner to scale with their business. To summarize the power, breadth And value the Falcon platform provides and the importance of building trust with customers, I will share 2 more customer wins with you. The first is with a large media company that was using a legacy provider and was hit with a severe ransomware attack that quickly spiraled across their business. They called on CrowdStrike Services, who leveraged both Falcon EDR for visibility as well as our new module Falcon Forensics, which automates the data collection and accelerates incident analysis to help them quickly locate the root cause and take back control of their environment. Following remediation of this breach, This new CrowdStrike customer was eager to transform their security posture and adopted 11 Falcon modules, including Falcon Complete, Discover, Spotlight, FalconX Recon, Cloud Workload Protection and Falcon 0 Trust to proactively secure and fully manage their workstations, Cloud workloads and identity layer as well as provide visibility into their IT assets and vulnerabilities. Next is a customer win I spoke about earlier with one of the largest non profit healthcare organizations in the United States. Given this company is a non profit, budget really matters, but not at the expense of breach protection. This customer was looking to refresh its endpoint strategy and move away from their existing vendor, Cylance, given it lacked the focus, efficacy and the customer service they had been promised. Without a security partner they could trust to protect them, they felt vulnerable as incidents were not identified or remediated at the speed required To stay ahead of today's threat actors, the competitive bake off initially included multiple next gen and legacy vendors. The low cost next gen product was quickly eliminated because the CISO realized the overly prevention focused approach Was too similar to legacy tech. Ultimately, this customer chose CrowdStrike as their trusted security partner, Given Falcon's low false positive rate, manageability at scale, ease of use and performance that stood out prominently over all others. Additionally, our frictionless deployment was once again a key differentiator as Falcon was deployed Across nearly 400,000 endpoints in just a few weeks. Moving to our partners. As we have discussed before, we are a partner first company and believe the rapid expansion of our partner ecosystem is a direct reflection of our growing leadership position. Partners naturally gravitate to market leaders as it helps them bring in new customers. And likewise, customer choice helps propel vendor prominence within the partner community. Our leadership position is driving strong engagement with all partners Of all sizes, which is contributing to our growing presence among the highest levels, including Boards and CIOs. For the first half of fiscal twenty twenty two, our partner sourced ending ARR nearly doubled year over year. Investing in our partner ecosystem continues to be a key priority. In July, we teamed up with Telefonica Tech to bring the power of the Falcon platform To their hundreds of thousands of customers across Europe and North and South America, coupling CrowdStrike Falcon with Telefonica's next Defense MDR Offering. Our joint customers now have trusted and proven next gen endpoint protection and world class services. We are also excited to announce a new strategic alliance with Verizon. Through this collaboration, the CrowdStrike Falcon platform will be positioned As part of Verizon's business security portfolio to provide comprehensive endpoint and workload protection that spans prevention, detection and response capabilities. Verizon Business will be able to manage CrowdStrike through their managed detection and response And CRM Services, and we are thrilled to team up with them to help joint customers stop breaches and reduce cyber risk. In summary, I couldn't be more confident in our leadership position and opportunities for growth. I do not see another vendor in the market with our vision, Our leadership as a trusted security platform of record And strong financial performance stands as a testament to CrowdStrike's dedication to innovation, protecting and delivering value to customers And transforming the security industry. I'd like to thank every CrowdStrike for all that they do day in and day out to make us the best in the business. With that, I will turn the call over to Bert to discuss our financial results in more detail. Thank you, George, and good afternoon, everyone. As a quick reminder, unless otherwise noted, all numbers except revenue mentioned during my remarks today are non GAAP. We once again delivered exceptional results. In addition to strong growth at scale, in the second quarter, we Additionally, we continue to perform at a high level well in excess of the SaaS Industries Rule of 40 benchmark, Once again achieving a rule of 80. Demand in the quarter was broad based and well balanced, fueled by strength in multiple areas of the business as we expand our leadership across the market from large enterprises to small businesses. We once again ended the quarter with a record pipeline, which we believe indicates a strong foundation for future growth. In the quarter, we delivered 70% ARR growth Year over year to exceed $1,340,000,000 Rapid new customer acquisition as well as expansion business within existing customers Drove substantial growth in the Q2, once again resulting in very strong net new ARR, which Came in at an all time high of $150,600,000 Our dollar based net retention rate was once again above our benchmark. Moving to the P and L, total revenue grew 70% over Q2 of last year to reach $337,700,000 Subscription revenue grew 21% over Q2 of last year to reach $315,800,000 Professional services revenue was $21,900,000 setting a new record for the 4th consecutive quarter and representing 49% year over year growth. In terms of our geographic performance in Q2, we continue to see strong growth in the U. S. As well as international markets. Revenue growth in the U. S. Was 73% and contributed approximately 72% of 2nd quarter revenue. Approximately 14% of revenue was derived from Europe, Middle East and Africa markets, 10% from Asia Pacific and approximately 4% from other markets. 2nd quarter non GAAP gross margin was 76%, up more than 150 basis points from Q2 of last year. Our non GAAP subscription gross margin was 78% and up more than 90 basis points from Q2 of last year. We continue to be pleased with our strong subscription gross margin performance. While we expect subscription gross margin to fluctuate quarter to quarter, We expect it to remain solidly within our increased target model range of 77% to 82% or more as we march to fiscal year 2025. Total non GAAP operating expenses in the 2nd quarter were 200 $22,400,000 or 66 percent of revenue versus $140,900,000 last year or 71 percent of revenue. As planned, we continued investing aggressively in our business during the quarter, including increasing investments in new technologies, International Geographies and Marketing Programs. We believe the investments we are making today will lead to Staying growth over the long term and maintain our pole position as the trusted security partner of choice. Scaling our business efficiently remains a top priority, which is why we intensely focus on our unit economics, including Magic Number. Our go to market engine is executing on all fronts to seize the strong demand we see in the market, so we can help even more customers restore trust in their security posture. In Q2, we ended with a magic number of 1.4. Our continued exceptional unit economics Speaks to the efficiency of our go to market engine and frictionless sales motion, which we specifically designed to rapidly onboard and support customers of all sizes. It also indicates that we should increase investments in order to capture even more of the market opportunity at hand, which is exactly what we are planning. 2nd quarter non GAAP operating income was $35,300,000 and operating margin improved more than 6 percentage points over Q2 of last year to exceed 10%. Non GAAP net income attributable to CrowdStrike In Q2 was $25,900,000 or $0.11 on a diluted per share basis. Our weighted average common shares used to calculate 2nd quarter non GAAP EPS attributable to CrowdStrike was on a diluted basis and totaled 238,000,000 shares. We ended the Q2 with a strong balance sheet. Cash and cash equivalents increased to approximately $1,790,000,000 Cash flow from operations in the Q2 was $108,500,000 and free cash flow was $73,600,000 or 22 This brings our free cash flow as a percent of revenue to 30% for the first half of the year. Moving to our guidance. We remain optimistic about the demand for our offerings, record pipeline and the powerful secular trends fueling our growth. Given the growth drivers of our business as well as our exceptional second quarter performance and momentum into the Q3, we are raising our guidance for the fiscal year 20 While we do not specifically guide to ending or net new ARR, we expect seasonality in net new ARR to be less pronounced relative to prior years as we move from Q2 into Q3 given our steady climb at a much higher scale in recent quarters. Additionally, please recall that our net new ARR in Q3 of last year included approximately $6,800,000 in acquired net new ARR. For the Q3 of FY 2022, we expect total revenue to be in the range of $358,000,000 To $365,300,000 reflecting a year over year growth rate of 54% to 57% with subscription revenue being the dominant driver of growth. We expect non GAAP income from operations to be in the range of 29.4 to $34,700,000 and non GAAP net income attributable to CrowdStrike to be in the range of $19,700,000 to $25,000,000 We expect diluted non GAAP net income per share attributable to CrowdStrike to be in the range of $0.08 to 0 point 10 dollars utilizing a weighted average share count of 240,000,000 shares on a diluted basis. For the full fiscal year 2022, We currently expect total revenue to be in the range of $1,391,200,000 to $1,409,400,000 reflecting a growth rate of 59% to 61% over the prior fiscal year. Non GAAP income from operations is to CrowdStrike to be between $102,900,000 $116,500,000 Utilizing 239 1,000,000 weighted average shares on a diluted basis. We expect non GAAP net income per share attributable to CrowdStrike to be in the range of $0.43 to 0.49 George and I will now take your questions. Thank you. In the interest of time, we do ask that you please limit yourself to one question. Thank you. Our first question comes from Saket Kahlil of Barclays Capital, your line is open. Hey, guys. Thanks for taking my question here. George, maybe for you. I was wondering if you could talk a little bit about the environment for big deals And what you're seeing out there. I think we all see the threat environment. I think you called it fierce in your prepared remarks. I'm curious how you're seeing that sort of manifest So As you indicated and as I talked about in the prepared remarks, the threat environment again continues to get worse. We've seen a lot of the ransomware attacks And what it's done and in particular, it has impacted business resiliency. It's no longer the case of encrypted computer and You know, re image and carry on, it's impacting massive amounts of business and costing 100 of 1,000,000 of dollars. And I can tell you, I've done more Forward briefings in the last 2 months than I've ever have. It seems like 1 a week to audit committees on this topic, particularly ransomware. When you look at big deals, how does this kind of translate? When you look at these big deals, we talked about the media company. That was 11 modules That we've landed with. So big lands, and some real big commitments from customers saying we want all in on your platform, we want all in on Humio. And we spent a lot of time consolidating other technologies and removing agents and driving value to customers. So The big deals, the big enterprises, the big lands continue to be there. And I think we continue to get stronger and stronger every quarter in these areas. Got it. Very helpful. Thanks, George. Thanks. Thank you. Our next question comes from Sterling Auty of JPMorgan. Your line is open. Yes, thanks. Hi, guys. So since Sentinel-one went public, I think the number one question I still get is what's happening with market share And what's the kind of competitive win rates, especially in different market segments as you look to go down market? Wondering if you could just kind of comment on what you're seeing? Sure. Good to hear from you, Sterling. We've actually seen an increase in our win rates across the board, legacy and next gen. Obviously, we spent a lot of time in the enterprise, but we have a very robust mid end SMB business, And we've seen strong results across the board. There's a lot of noise, but I think you have to look at the numbers that we put up on the board. One quarter of our net new ARR is probably 94% of their total ARR. So when we think about this, it's a big market. Customers have a lot of choice and they're focused on breach prevention, not just detecting malware. And I think our platform, our Ability to scale, our ability to get immediate value on rollout and manageability, These are all things that are really important to not only large enterprises, but also to the smallest SMB customers out there. So that's what we've seen so far. Makes sense. Thank you. Thank you. Our next question comes from Brent Thill of Jefferies. Your line is open. Hey, guys. This is Joe on for Brent. Really appreciate the question. Maybe if you look out at the next 18 months, can you just rank your growth drivers? Is there any low hanging fruit still there in core endpoint? Or is it going to come from XDR via Humio? Or is it international the opportunity? Any color there would be helpful. I think it's across the board. We're still in the early innings. If you look at the number of customers we have, 13,000 and change versus some of our legacy Competitors that have over 100,000, I mean, still lots of customers that are out there. When you look at things like XDR and you look at Qumio, Amazing growth drivers for us. When you look at cloud, we've done a lot of work on that. Last year, we did a little analysis on the opportunity. We think it's really Undersized from a market scape perspective, if you will, from the analyst. And then when you look at things like identity, We're the only folks that have a 0 Trust identity module that came from preempt. That's it. We're the only endpoint folks that have that. So That's been extremely successful for us. And when you look at the attacks, a lot of them are identity based. And You switched that to identity being abused in the cloud and our Falcon Horizon module, which has done an amazing job, And we've seen amazing traction with that. So I think there's pockets of opportunity Broad based across all the modules, across all the geographies and the momentum begets momentum. We really have become the go to company in this space and that gold standard brand reputation has served us well. Thank you. Thank you. Our next question comes from Rob Owens of Piper Sandler. Your line is open. Great. And thank you for taking my question. George, to follow-up there in terms of the growth drivers, could you double click on the XDR opportunity? And whether this is the tip of the spear for customers or you're able to go back into the installed base, I guess the spirit of the question is, Are you seeing clients be reactionary still at this point given the breach environments? Are they starting to get more strategic in terms of how they're deploying those security dollars? Thanks. Yes. I think they are becoming more strategic and that's a lot of what we focus on. How do we consolidate? How do we Become the platform of record like we have in many other companies for them. And how do we eliminate cost and complexity of what they have? When we think about XDR, it's really advanced threat detection. We've been doing that for a long time. And now you're combining that with other people's data as well. So it's fantastic. That's a great growth driver. But we still have the Humio Log management product as it is, right? And obviously, there'd be more integration with that in our platform, but that is an amazing product that allows you to log everything all of the time and Answer any question in real time. So there are 2 kind of 2 different products, if you will. And between the 2 of them, As I mentioned, we had a 7 figure land in Q3. I think really we're just in the early innings. I'm so excited about that technology, And I can't wait to see how everything unfolds over the next couple of quarters. Thank you. Our next question comes from Matt Hedberg of RBC Capital Markets. Your line is open. Great. Thanks a lot for taking my questions, guys. George, I noticed you launched Falcon Complete for GovCloud this quarter. Can you remind us of your exposure to U. S. Fed and maybe how you guys are uniquely positioned to take share in kind of the overall public Sector or vertical? Sure. Well, we kind of lump state, local, federal altogether. Obviously, That is a big focus for us. And when we think about what's happening in the current environment and some of the moves that are being made in Washington, We think our technology is uniquely suited for solving some really big problems in those areas. We've seen success in the civilian agencies. And we're all processed for IL-four certification. We're just waiting on the government to approve that. And that allows us into other higher classified areas, if you will. So that is a segment that takes A lot of time and effort and government doesn't move so fast, but we've made great strides there. And really across the board, state and local As well, I mean, we've got some amazing states that are customers, many of them, and local government. As we look at those in its totality, we've done tremendously well there and we still think we're in the early innings. Thank you. Our next question comes from Tal Riani Bank of America, your line is open. Hi, guys. Congrats on a great quarter. I have two questions on the market. When we discuss with distributors, there are 2 things that come up and I want to ask you about the importance of automation And that's in specific in relation to the selling point of SentinelOne? And second, about the price difference between you two, as far as I understand, and please correct me if I'm wrong, they compete with you with a lower price solution. Is price a significant factor in the sales process? Thanks. Sure. I think if you buy into the marketing hype, that's one thing. But if you look under the covers, we have more automation by far Than any other competitor, including S1. I mean, that's how we get the scale. That's why the product is easily deployed. That's why We can drive cost out of the customer base because it does it automatically. When you look at the totality of all the services, again, we're focused on stopping breaches, not just we didn't come from a malware Product that we try to bolt on other pieces, we built this from the ground up. So on the pricing standpoint, we sell on value And we routinely win with a higher price point because the product works. It doesn't blow up machines. It's scalable. And People are talking to other customers saying, what are you using and how is it working? And again, we're focused on stopping breaches, not just dealing with malware. And I think that serves us well. So low cost options, I think you get what you pay for. There's a difference between a Fiero and a Ferrari. And we happen to be the Ferrari model and that's what a lot of customers want. Do you feel any pricing pressure in the market or we're not yet at this stage? I mean, there's always going to be competitive deals that are out there, whether it's Next gen competitors are legacy players and you have to play each deal by year, if you will. But at the end of the day, We're going to compete on value, which we have. And I can tell you there's a lot of deals we win where we're higher priced than our competitors. And I think the product is differentiated enough in true platform. When you look at the technology, only one with the forensic modules, only one with The Identity module, we've got an amazing growth in Spotlight, vulnerability predictive vulnerability management. So When you strip out all the PowerPoint and noise, you got to look at what really works and what are big customers focused on rolling out, and it's CrowdStrike. Got it. Thank you. Thank you. Our next question comes from Brian Essex with Goldman Sachs. Your line is open. Yes, good afternoon. Thank you very much. Thank you for taking the question. Maybe Bert, as we see you kind of like Inching down market, how do you think about the model from the perspective of giving investors comfort that you can Maintain retention rates, module adoption margins. What are the difference in dynamics? And do you have a sense of I don't know if you can quantify the mix in what you're seeing through the model? I think the first thing you got to look at is the new logos, Right. So we saw acceleration in new logos and a lot of that is coming from down market. And so what you see in down market is you see folks that can come in quickly. We've taken out friction from the system to be able to allow onboarding to be really smooth, efficient, Then they're getting a tremendous amount of value in the down market. And certainly, when folks In the SMB space, if they choose our Falcon Complete offering, which we monitor, remediate Directly for them. They see the value in terms of filling that skills gap as well. And so that talks To the retention rates that we're seeing with respect to down market. So very optimistic about our opportunities in down market. We've done really well overall and we continue to win our unfair share in that segment. Okay, super helpful. Thank you. Sure. Our next question comes from Alex Henderson of Needham. Your line is open. Great. Thanks. I was hoping you could talk a little bit about the average deal size in your pipeline Across Strata, in other words, if I look at enterprise to enterprise, mid market to mid market and lower end At the lower end, are your deal sizes increasing across the pipeline? And did it happen in the most recent quarter? And similarly, with the all of these attacks that we've been seeing, can you talk a little bit about the other key metrics such as Time to close and the overall strength of the pipeline. Has the attack Rate caused an uptick in those three metrics. Thanks. Thanks, Alex. So first, let me comment that again, as I said in the prepared remarks, we've seen record momentum in the business Heading into the second half. So we're excited about that. And that's an accumulation across the board in all the segments. For us, we don't give out specifics into each of those different segments. But what we can tell you is that we're landing with more modules, SMB all the way up to enterprise. You can refer to George's comments about that one deal that had 11 modules. And So we're seeing more and more of that and that's also evidence as you look at the adoption rates of our modules. Every quarter That we talk about adoption rates, they keep going up. And I think that that's a testament to the strength of the Platform, it talks to the fact that more and more customers want to buy a platform as opposed to point solutions. And soon, we're going to be giving out data On no longer 4, 5, 6, but 5, 6, 7 modules because the 4th module is going to be virtually the same as The 3rd as in terms of adoption rates. So we're continuing to see momentum across the board And we're seeing those adoption rates continue to tick up because of folks trying to customers trying to buy the platform, Which is all integrated and flighted for them. So that's what we're seeing, Alex. Any comment on time to close, length of time to close deals? I'll just comment that we generally don't talk about that, but we've talked about in the past, where we've had large enterprise Deals that close over a weekend. And we still see some of those. That's not obviously every case. But we're seeing customers come to us Obviously, more frequently by the number of logos and some are closing really, really rapidly, even 7 figure deal type of customers. Great. Thank you. Sure. Thank you. Our next question comes from Itkheia Kindredan of Oppenheimer, your line is open. Thanks. Hey, guys. Great quarter. Not that growing 64% is bad into our international business on a year over year basis, but With it being only 28% of revenue, why is it growing still slowly than the U. S? George, maybe you could talk about the international progress, your priorities there. And is there a different go market approach perhaps you need in order to really unlock the opportunity internationally? Yes. So when we look at international growth, I think think you got to look at how strong the U. S. Has been. So when you look at the U. S. Growth, it's been on fire for sure. And internationally, I think that's You always continue to build out your capacity there, your partner network, and that's a key piece. We're just more mature in the U. S. And We have more mature partners. So we continue to focus on that. I think we've had some really great international wins, some big players that are out there. And we continue to focus on the key areas and the key geographies. I don't know, Bert, if you have any other comments on that piece. Yes. So I mean, this goes back to the fact that we're looking to continue to invest aggressively and international markets is one of those areas. I think we've got opportunity out there to take more share. When you're comparing it to the U. S, we have a high grade problem where the U. S. Is still Really super strong. And as George already mentioned, we're still in early innings in the number of logos and customers that we have, 13,000. It's great. We're really proud of that. But it's a drop in the ocean when you compare it to some of the legacy players that have over that have had over 100,000 customers. So We think about that opportunity internationally to be out there and we're going to aggressively go after it. Good luck. Thanks. Thank you. Thank you. Our next question comes from Gray Powell of BTIG. Your line is open. All right, great. Thanks for taking the question and congratulations on the strong results. So, yes, earlier this year, you all seemed pretty excited about the potential to gain incremental customers against Microsoft. I know you had some comments in the prepared remarks and obviously the headlines on Microsoft have not been particularly great this year in security. So yes, just how are you seeing that opportunity play out and how big do you think it could be? Sure. So obviously, Microsoft, you have to take seriously as a As a competitor, which we do for all competitors, and it's a big market. I think when customers are looking for That sales force of security, they're coming to Crouch Rec, fully integrated, covering multiple operating systems and Again, focusing on stopping breaches. And there has been a lot of talk, again, at the audit committee around risk in a monoculture. And customers are becoming more and more uncomfortable with putting their eggs in one basket. I think we have a great opportunity there. We highlighted some of the big wins. And at the end of the day, Microsoft's Microsoft, they're going to get customers. But I think With the best platform, the best technology, our results speak for themselves and what we've been able to do. And customers, again, want that ease of use, ease of deployment Thank you. Our next question comes from Greg Moskowitz of Mizuho. Your line is open. Okay. Thank you for taking the question and very good quarter. I had a follow-up on Falcon Complete, which I think you mentioned has a customer base up 2.5x in recent quarters. And Similarly, we're hearing that demand has really been spiking for the solution over the past few months, including among larger organizations. And so with that in mind, Can you talk about your expectations for adoption of Complete going forward across both large enterprises and governments? Sure. It's a great question. When we originally built Complete, we thought it would be built for sort of that mid market customer that maybe had one security person or none or a half. And the reality is, it's we're selling it to the smallest SMBs all the way up to the largest enterprises. 1 of our largest enterprise customers The Falcon Complete customer because the economics are so good for them. When you look at, again, getting back to automation, the automation we've built in is second None in how we operate the service. When you look at that, we can really drive the cost out for our customers and provide a very high touch Engagement with them, which is what they're looking for. Again, stopping breaches, being able to Identify threats very quickly and remediate them very quickly outside of any of the other automation that we have. So That level of engagement is something that truly differentiates us. And when you even think about this sort of market, it's a little bit more than MDR, but We were doing this before MDR was even coined a term. So we have a lot of experience here that pales in comparison to our competitors. Terrific. Thank you. Thank you. Our next question comes from Mike Walkley of Canaccord Genuity, your line is open. Great, thanks. Congratulations on the net new customers. I was wondering if you could share roughly the number of modules on average a new customer chooses today versus a year ago? And also, How is the percent of multiyear deals improving as shown by the strong RPO metrics? Thanks, Mike. Good question. So, we don't give out the specific numbers, how many modules each customer gives. But we do give out The percentage of customers with 4, 5 and 6 plus in modules, which are respectively 66, 53 and 29, And that's been increasing quarter over quarter. And so that just draw talks at a testament of our ability to continue to sell To continue to sell the platform. And we are focused on continuing to build out the platform And to give customers more and more choice in terms of what they have available to them. And at the end of the day, George has talked Many times about, hey, we're going to make this thing seamless for you to deploy And at the end of the day, easy to manage. And when you combine those things, it just makes it easier for customers to adopt. And so, going back to our earlier comments about the ability to scale And the ability to drive customer adoption, it all comes back to making it easy for the customer. And we're very focused In that area. And that's part of our core and part of our DNA, and we'll never take our eye off that. Just that Similar to that, we're never going to take our eye off efficiency, right? Unit economics matters. However, we do know that we've got this opportunity in front of us to be able to Go after more market share and we're going to invest in that area to be able to go after more and more new logos as we continue our journey. Okay. Thank you. Thank you. Our next question comes Ed Skujiger of JMP Securities, your line is open. Yes. Thanks for taking the question and congrats on a good quarter. I was curious about the CrowdStrike store. That's been adding partners since the IPO certainly. I was wondering, can you try to quantify or give us some context in terms of what revenue opportunity that is? And then also, I think Rapid7 and Simplify were a couple of partners you highlighted. Can you talk a little bit about where your organic capabilities end and where they pick up With the QEMEO technology, with SIMPLIFY and the spotlight with Rapid7? Sure. So from a partner store perspective, it's I think been very well received by customers and They love the integration. And again, part of the strategy that we have with a single agent, single data store with Redgraph and what I would call Beachfront Real Estate is customers don't want more agents, they want less. And they trust their agent, it's there, they know its performance and it works. So the whole idea again is how do we leverage that architecture, Sure. Almost agent as a service, if you will, for other partners. So that includes data integration, being able to interact with our agents, We've done that for many other partners that are out there. And it's really based on customer demand. Do they know the technologies that they're using, they want to integrate and some of the names you mentioned You know, fall into that area. When we think about Spotlight and its capabilities, we are replacing a lot of other agent based VM technology that's out. And again, Remember, we don't do the network scanning piece. We think that's a bit commoditized. And what customers are looking for, we highlighted this with the print nightmare vulnerability that Microsoft had is, They want push button results instantly, which we give them. And now using AI, we can actually prioritize What vulnerabilities are most likely to be exploited, which really helps the IT ops team. So we've got tremendous capabilities in those areas and Qumio is Again, it's just been a shining star for us. There hasn't been a customer or prospect I talked to that haven't been Extremely impressed with the capabilities there. So we'll be leveraging that as part of the integrations for the store. And I think we're still in the early innings there. And that can be a out year is a big driver of revenue for us. But right now, it's very strategic and make sure our customers are happy. Thank you. Thank you. Our next question comes from Patrick Colville of Deutsche Bank. Your line is open. Thank you for taking my question. I guess my question is about AV. One of the things we get a lot of incoming on is How far through that AV displacement are we in kind of mid-twenty 21? Would you say that based on the kind of conversations you were having with customers and potential customers that kind of in the late innings of that process? Or Is there still kind of a lot to go and then we are in the early innings? I mean, that would be helpful. Thank you. Sure. I still think we're in the early innings. Again, if you look at our customer count Versus a MACI or Symantec or a Trend, it's again impressive for a younger company, but still pales in comparison to all the customers that they have. So it's an ongoing effort. It's a multiyear effort. Lots of tailwinds there for us. And that's in the enterprise. And when you get down into SMB in the mid market, you got a ton of other players that are out there, too many to mention here. So that's always going to be an ongoing Opportunity for us and in my opinion, still very early innings. And I know that from the Big deals that we're doing and the Maxim and the Symantec replacements. I mean, it just happens every quarter, kind of like clockwork. And can I just tag on, I mean, when do you think we'll get to the late earnings of that displacement? Is it like I don't want to kind of put you on the spot and give forward guidance, but is it like anytime soon or is it quite far out? Personally, I think it's far out because you have to look at the renewal cycles for many of these customers, right? It could be a year, 2 years or 3 years and it's always ongoing. And I would look at the customer count, compare that to other players that are out there and that will give you a good idea of where we are versus what's available to us. Thanks so much. Thank you. And this does conclude the formal part of the Call, I'd like to turn the call back over to George Kurtz for closing remarks. Great. I want to thank all of you for your time today. We certainly appreciate Thank you. Ladies and gentlemen, this does conclude today's conference. Thank you all for participating and have a great day.