Newton, Mass. and Petach Tikva, Israel – November 7, 2018 – CyberArk (NASDAQ: CYBR), the global leader in privileged access security, today announced record total revenue and strong financial results for the third quarter ended September 30, 2018.
“We exceeded our financial outlook across all guided metrics, while generating record revenue and non-GAAP operating income in the third quarter,” said Udi Mokady, CyberArk Chairman and CEO. “Our strong results reflect our success executing our growth strategy across sales and marketing as well as delivering innovative solutions that help strengthen customers’ overall security posture on premises, in the cloud and across the DevOps pipeline. Given our strong leadership position in the privileged access security market and our performance year to date, we are pleased to raise our full year guidance for 2018.”
Financial Highlights for the Third Quarter Ended September 30, 2018
- Total revenue was $84.7 million, a 31% increase from $64.8 million in the third quarter of 2017.
- License revenue was $46.1 million, a 29% increase compared to $35.8 million in the third quarter of 2017.
- Maintenance and Professional Services revenue was $38.5 million, a 33% increase from $29.0 million in the third quarter of 2017.
- GAAP operating income was $8.8 million for the quarter, compared to $1.7 million in the third quarter of 2017.
- Non-GAAP operating income was $21.0 million for the quarter, compared to $10.7 million in the third quarter of 2017.
- GAAP net income was $8.1 million, or $0.22 per diluted share, compared to GAAP net income of $1.7 million, or $0.05 per diluted share, in the third quarter of 2017.
- Non-GAAP net income was $17.8 million, or $0.48 per diluted share, compared to $8.9 million, or $0.25 per diluted share, in the third quarter of 2017.
The tables at the end of this press release include a reconciliation of GAAP to non-GAAP gross profit, operating income and net income for the three months and nine months ended September 30, 2018 and 2017. An explanation of these measures is also included below under the heading “Non-GAAP Financial Measures.”
Balance Sheet and Cash Flow:
- As of September 30, 2018, CyberArk had $410.0 million in cash, cash equivalents, marketable securities and short-term deposits. This compares to $330.3 million as of December 31, 2017 and $296.8 million at September 30, 2017.
- As of September 30, 2018, total deferred revenue was $136.0 million, a 29% increase from $105.2 million at December 31, 2017 and a 59% increase from $85.6 million at September 30, 2017.
- During the first nine months of 2018, CyberArk generated $89.2 million in net cash provided by operating activities, an increase of 100% from $44.6 million in the first nine months of 2017.
Based on information available as of November 7, 2018, CyberArk is issuing guidance for the fourth quarter and increasing its guidance for the full year 2018 as indicated below.
Fourth Quarter 2018:
- Total revenue is expected to be in the range of $94.75 million to $96.25 million which represents 18% to 20% year-over-year growth.
- Non-GAAP operating income is expected to be in the range of $27.3 million to $28.5 million, or an operating margin of 29% to 30%.
- Non-GAAP net income per share is expected to be in the range of $0.58 to $0.60 per diluted share. This assumes 37.9 million weighted average diluted shares.
Full Year 2018:
- Total revenue is expected to be in the range of $328.9 million to $330.4 million, which represents 26% year-over-year growth.
- Non-GAAP operating income is expected to be in the range of $78.0 million to $79.2 million, or an operating margin of 24%.
- Non-GAAP net income per share is expected to be in the range of $1.75 to $1.77 per diluted share. This assumes 37.2 million weighted average diluted shares.
Conference Call Information
CyberArk will host a conference call on today, Wednesday, November 7, 2018 at 4:30 p.m. Eastern Time (ET) to discuss the company’s third quarter financial results and its business outlook. To access this call, dial +1 844-237-3590 (U.S.) or +1 484-747-6582 (international). The conference ID is 2673547. Additionally, a live webcast of the conference call will be available via the “Investor Relations” section of the company’s web site at www.cyberark.com.
Following the conference call, a replay will be available for one week at +1 855-859-2056 (U.S.) or +1 404-537-3406 (international). The replay pass code is 2673547. An archived webcast of the conference call will also be available in the “Investor Relations” section of the company’s web site at www.cyberark.com.
CyberArk (NASDAQ: CYBR) is the global leader in privileged access security, a critical layer of IT security to protect data, infrastructure and assets across the enterprise, in the cloud and throughout the DevOps pipeline. CyberArk delivers the industry’s most complete solution to reduce risk created by privileged credentials and secrets. The company is trusted by the world’s leading organizations, including more than 50 percent of the Fortune 100, to protect against external attackers and malicious insiders. A global company, CyberArk is headquartered in Petach Tikva, Israel, with U.S. headquarters located in Newton, Mass. The company also has offices throughout the Americas, EMEA, Asia Pacific and Japan. To learn more about CyberArk, visit www.cyberark.com, read the CyberArk blogs or follow on Twitter via @CyberArk, LinkedIn or Facebook.
Copyright © 2018 CyberArk Software. All Rights Reserved. All other brand names, product names, or trademarks belong to their respective holders.
Non-GAAP Financial Measures
CyberArk believes that the use of non-GAAP gross profit, non-GAAP operating income and non-GAAP net income is helpful to our investors. These financial measures are not measures of the Company’s financial performance under U.S. GAAP and should not be considered as alternatives to operating income or net income or any other performance measures derived in accordance with GAAP.
The Company believes that providing non-GAAP financial measures that exclude share-based compensation, acquisition related expenses, amortization of intangible assets related to acquisitions, facility exit and transitions costs, intra-entity IP transfer tax effect and the tax effect of the non-GAAP adjustments allows for more meaningful comparisons of its period to period operating results. Share-based compensation expense has been and will continue to be for the foreseeable future, a significant recurring expense in the Company’s business and an important part of the compensation provided to its employees. Share based compensation expense has varying available valuation methodologies, subjective assumptions and a variety of equity instruments that can impact a company’s non-cash expense. The Company believes that expenses related to its acquisitions and amortization of intangible assets related to acquisitions, facility exit and transitions cost and intra-entity IP transfer tax effect do not reflect the performance of its core business and impact period-to-period comparability.
Non-GAAP financial measures may not provide information that is directly comparable to that provided by other companies in the Company’s industry, as other companies in the industry may calculate non-GAAP financial results differently, particularly related to non-recurring, unusual items. In addition, there are limitations in using non-GAAP financial measures as they exclude expenses that may have a material impact on the Company’s reported financial results. The presentation of non-GAAP financial information is not meant to be considered in isolation or as a substitute for the directly comparable financial measures prepared in accordance with U.S. GAAP. CyberArk urges investors to review the reconciliation of its non-GAAP financial measures to the comparable U.S. GAAP financial measures included below, and not to rely on any single financial measure to evaluate its business.
Guidance for non-GAAP financial measures excludes, as applicable, share-based compensation expense, acquisition related expenses, facility exit and transitions costs, amortization of intangible assets related to acquisitions, intra-entity IP transfer tax effect and the tax effect of the other non-GAAP adjustments. A reconciliation of the non-GAAP financial measures guidance to the corresponding GAAP measures is not available on a forward-looking basis due to the uncertainty regarding, and the potential variability and significance of, the amounts of share-based compensation expense, amortization of intangible assets related to acquisitions, and the non-recurring expenses that are excluded from the guidance. Accordingly, a reconciliation of the non-GAAP financial measures guidance to the corresponding GAAP measures for future periods is not available without unreasonable effort.
Cautionary Language Concerning Forward-Looking Statements
This release contains forward-looking statements, which express the current beliefs and expectations of CyberArk’s (the “Company”) management. In some cases, forward-looking statements may be identified by terminology such as “believe,” “may,” “estimate,” “continue,” “anticipate,” “intend,” “should,” “plan,” “expect,” “predict,” “potential” or the negative of these terms or other similar expressions. Such statements involve a number of known and unknown risks and uncertainties that could cause the Company’s future results, performance or achievements to differ significantly from the results, performance or achievements expressed or implied by such forward-looking statements. Important factors that could cause or contribute to such differences include risks relating to: changes in the rapidly evolving cyber threat landscape; failure to effectively manage growth; near-term declines in our operating and net profit margins and our revenue growth rate; real or perceived shortcomings, defects or vulnerabilities in the Company’s solutions or internal network system, or the failure of the Company’s customers or channel partners to correctly implement the Company’s solutions; fluctuations in quarterly results of operations; the inability to acquire new customers or sell additional products and services to existing customers; competition from IT security vendors; the Company’s ability to successfully integrate recent and or future acquisitions; and other factors discussed under the heading “Risk Factors” in the Company’s most recent annual report on Form 20-F filed with the Securities and Exchange Commission. Forward-looking statements in this release are made pursuant to the safe harbor provisions contained in the Private Securities Litigation Reform Act of 1995. These forward-looking statements are made only as of the date hereof, and the Company undertakes no obligation to update or revise the forward-looking statements, whether as a result of new information, future events or otherwise.