Rapid7, Inc. (RPD) Q2 2016 Earnings Report, Transcript and Summary

Ladies and gentlemen, thank you for standing by and welcome to the Rapid7 Second Quarter Earnings Call. During the presentation all participants will be in a listen-only mode. Afterwards, we will open up the question and answer session. [Operator Instructions] As a reminder, this conference is being recorded today, Monday, August 8, 2016. I would now like to turn the conference over to Mark Donohue. Please go ahead.

Thank you operator, and good afternoon everyone. We appreciate you joining us to discuss our Q2 2016 financial and operating results. I'm Mark Donohue, VP of Treasury and Investor Relations and I'm here today with Corey Thomas, our President and CEO and Steven Gatoff, our CFO. We've distributed our Q2 2016 earnings press release over the wire and have posted it on our website at investors.rapid7.com. We've also posted our Q2 2016 results earnings presentation, along with an updated company presentation on our investor relations website. This call is being webcast and can be accessed at investors.rapid7.com. The webcast of this call will be archived and a telephone replay will be available on our website until August 11, 2016. We would like to bring the following to your attention. The date of this call is August 2016. Our discussion today may contain forward-looking statements about events and circumstances that have not yet occurred, including without limitations, statements regarding our objectives for future performance and future financial and business performance. These forward-looking statements are based on our current expectations and beliefs and on information currently available to us. Statements containing words such as anticipate, believe, continue, estimate, expect, intend, may, will and other similar statements are intended to identify such forward looking statements. Actual outcomes and results may differ materially from the expectations contained in these statements due to a number of risks and uncertainties, including those contained in the risk factors section of our annual report on form 10K filed with the Securities and Exchange Commission for the fiscal year ended December 31, 2015. As well as subsequent reports that we have filed with the Securities and Exchange Commission as well. The information provided on this conference call should be considered in light of such risks. Actual results and the timing of certain events may differ materially from the results or timing predicted or implied by such forward looking statements, and reported results should not be considered as an indication of future performance. Rapid7 does not assume any obligation to update the information presented on this conference call except to the intent required by applicable law. On this call we will provide and talk about our results using non-GAAP financial measures and provide non-GAAP guidance. We believe that the use of the non-GAAP financial measures provides an additional tool for investors to use in understanding company performance, but note that the presentation of non-GAAP financial information is not meant to be considered in isolation or as a substitute for the directly comparable financial measures prepared in accordance with GAAP. We have provided a reconciliation of the historical non-GAAP financial measures to the most comparable GAAP measures in the financial statement tables included in the press release announcing our results. The press release announcing our financial results is available on our website at investors.rapid7.com. With that, I'd like to turn the call over to Corey.

Thank you Mark, and good afternoon everyone. I would like to start by thanking all of you for joining us today on our second quarter 2016 earnings conference call. We are pleased with our overall strong financial results and business execution for the quarter. Our billings this quarter were stronger than expected, primarily due to converting more of our large enterprise deal pipeline than we had anticipated. One of our largest deals this quarter was an Intel MVM conversion where we have seen excellent up-sell and cross sale momentum. We're pleased with the size and quality of our large deal pipeline and the increasing commitments customers are making to us. Because of these deals, and they can be lumpy, we continue to manage the timing of when we will close over a multi-quarter basis. I am also happy to report that we reached an important turning point this quarter on our path to profitability as we delivered $1.9 million in positive operating cash flow. While quarterly fluctuations in operating cash flow may occur, we believe we have established a pathway to maintaining annual positive operating cash flow in 2016 and beyond. Steven will cover these areas in more depth in his commentary. As we think about how we will sustain our success, we believe our strategy is best summarized in three main points. First, we see continued revenue growth driven by healthy demand for our differentiated data and analytic solutions and our proven track record of executing on our land and expand go-to-market model. Second, the record we have in running the business is driving overall scale and efficiency. And lastly, we continued innovation of our product portfolio is not only allowing us to attract new customers, but also to maintain high renewal rates and strong customer loyalty. The proliferation of integrated and interconnected technologies pose increasing threats to IT environments. The capability of legacy solutions, which largely utilized static rules and historical databases are no longer suitable to provide adequate protection. Today technology professionals are playing an increasingly critical role in their organizations and they need solutions that deliver both information and insights to gain clarity, control and confidence to help their business move forward. As such, advance statement analytic solutions that take into consideration the importance of time, accuracy, prioritization of risk and a path to remediation are growing in demand. We believe our portfolio innovations around InsightIDR and Nexpose Now, which was delivered to market in the first half of the year, have become game changers in the market. Specific to InsightIDR, we have seeing strong traction in pipeline build. The legacy SIEM solutions are expensive, require extensive configuration to take a long time to implement. As a result, the SIEM market generally serves organizations with significant resources and sophisticated security teams. InsightIDR is designed to disrupt the industry with advanced data science, specialized analytics, ease of implementation, and equitable pricing model that is not based on data volume. Therefore we believe this not only makes Rapid7's InsightIDR solution an attractive enterprise SIEM replacement, but also fills a major gap in the space and expands the addressable market. The organizations that previously could not justify deploying SIEM technology due to the high cost and security expertise required now have an affordable and viable alternative with InsightIDR. While we are in the early stages of InsightIDR deployments, customer feedback from both live deployments and evaluations has been overwhelmingly positive. We have a domestic customer in the services sector that deployed InsightIDR this quarter and they reported that they immediately saw valuable results. In fact, they told us that our offering provided them a return on investment during the first week of use and was able to identify hostile nation state activity on one of their file services. In some instances, our customers are looking for assistance during the initial phase of InsightIDR's deployment and management. Particularly those with little to no previous incident detection and response experience. As a result, a number of deals thus far have been sold in conjunction with our analytic response manage services. This offering works is an extension of an organization security team and are dedicated analysts have experience in hunting and indemnifying dynamic threats and containing specific incidents. Our technology and services team serve as valuable resources to organizations that lack expertise or are understaffed. To that last point there are many sources citing the sizable talent shortage in the security space. Last month the US Office of Management and Budget released a memorandum in which they highlighted how they like the cybersecurity practitioners is an impediment to both federal and private sector's ability to adequately address increasingly sophisticated and persistent cyber threats. In fact, ISC2's most recent workforce study project projects that by 2020 there will be over 1.5 million unfilled cybersecurity jobs. We see this issue represented across large portions of our customer base who struggle to hire and retain high-quality cyber security professionals. In addition, Gartner reported in their market guide for Manage [ph] Detection and Response Services that by 2020 15% of midsize and enterprise organizations will be using manage detection response offerings up from 1% today. These trends greatly favor our full suite of private offerings, which have been designed for ease of deployment, management, scalability and for organization, as well as to complement our managed service offerings, where we are seeing great traction. With regard to our threat exposure management offering, the strategic launch of Nexpose Now in June has exceeded our expectations. We greatly increase the scope of functionality of Nexpose with the addition of live dashboards, remediation workflow, as well as our insight agents which allow organizations to expand the breadth and depth of data capture at the endpoint. This marks an inflection point for IT security professionals, who demand live information flow without the toil of passive scanning as the IT environments change. In fact, more than 6.4 million unique assets are already being assessed by Nexpose Now, providing our customers enhanced visibility into their IT environments. The team and I are thrilled about how well Nexpose Now is received by our customers. One example in particular, a public traded global technology company, immediately recognized the power of our live dashboards. Their feedback was that the card-based interface was easy to use, they were informed the second their environment changed and were able to take action on specific items like SSL inferations. Furthermore, their security team reported that their ability to prioritize actions and more effectively communicate with their IT counterparts using our workflow capability helped them to both easily share progress and instill confidence with their leadership team. We believe the progress we're making with both our Nexpose and InsightIDR product offerings is tangible evidence of the success of our cloud-based data and analytics platform. This platform is our core technology advantage. It exemplifies the depths of data capture we can deliver organizations, and how we're using that to drive scale and leverage into our business. This quarter marks a significant milestone whereby our full product suite became further empowered by the cloud and customer satisfaction which can best be showcased by the notable rise this quarter in adoption. Today, just over 12% of our customers have opted onto the capabilities that run on our cloud-based data it and analytics platform. Up markedly from last year, where it was less than 3%. The important take away here is that we believe our products are becoming increasingly critical to our customer success and their appetite for the latest features, functions and innovations remains strong. We believe the benefits of our customers receive from a centralized cloud based data analytics platform are nothing short of compelling. It is the central source of our expertise, extensive conceptualized data collection capabilities and our powerful analytics engine. It includes the core fundamental technologies in our portfolio encompassing search, visualization, reporting and workflow. It is designed to eliminate the data silo effect that is so prevalent and other point products and legacy solutions, and allow IT practitioners to make better and faster decisions by reducing their blind spots. Our strong customer relationships have revealed alternative use cases for the extensive data that we collect that extend beyond security and to R&D applications in the IT ecosystem. Accordingly, we see clear network effects from our investments and approach. In this regard, we see our cloud-based data and analytics platform serving as the backbone by which we believe we can quickly and seamlessly explain our product offerings with nominal investment. We envision a growing product suite that provide additional turnkey solutions that leverage the power of data that is routinely collected, contextualized and analyzed. Today the security ecosystem continues to be fragmented and difficult to navigate. IT practitioners have too many choices, which is oftentimes overwhelming, confusing and do not solve the most fundamental problems they are faced with. We contend that the most important sectors in evolving cyber security landscape will be network, endpoint and data and analytics. We believe innovators in these three domains will greatly benefit from the shifts in the market and we are focused on continuing to make Rapid7 the clear leader in the data and analytics realm. As we continue to grow, execute on our opportunities and scale the business, we continue to add talent to our leadership team. To that end, we're very excited to welcome our two newest board members. Mark Brown and Tom Schodorf, who have valuable expertise in the cybersecurity and IT search and operations markets. Their backgrounds and skills complement our existing board members very well and we look forward to their contributions as we work together to continue to provide innovative solutions and unlock the tremendous opportunities ahead. As we noted in our July 19 press release, announcing that Mark and Tom had joined the board, Chris Young has decided to retire from the Rapid7 board. I want to take this time to personally thank my colleague and good friend for his years of service to Rapid7. We are all better for it. In the first half of this year, the Rapid7 team has worked diligently and as evidenced by the points I covered today, we continue to be committed to delivering on the three main objectives we set at the beginning of the year. Disrupting the traditional SIEM market, expanding the threat exposure management opportunity and driving scale and leverage into our business. We believe we are very well-positioned to continue to deliver product innovation, and security data and analytics grow our business and drive progress on our path to profitability. And finally, as you saw in our press release, we also announced today that our CFO, Steven Gatoff, will be transitioning out of the company, as he is returning back to California with his family. Steven has agreed to stay on until January so we have plenty of time to manage a very thorough, seamless and orderly transition together. We've already initiated a formal search for his replacement. Steven joined the company just as I was appointed CEO almost 4 years ago. His partnership, experience and commitment were very important in this chapter of the company's success. He played an instrumental role in the growth of Rapid7 and in helping us to prepare and execute our IPO. He is leaving our management team and company in a great place and on behalf of the Board of Directors and the whole Rapid7 team, I want to thank Steven for his considerable contributions to the company and wish him success in his future endeavors. And with that, I will now turn the call over to you. Steven?

Thanks Corey. I really appreciate your kind words and our friendship all these years. It's been a great journey together. Good afternoon everyone and good evening. The decision to leave Rapid7 was difficult and not one that I approached lightly. It's been a terrific partnership with Corey and the whole team here and I'm incredibly proud of what we accomplished together. As you may know, I moved to Boston from Palo Alto to join Corey and I think all for having had that opportunity. After nearly 4 years in Boston and some important family milestones for our two daughters now upon us, it's the right time for my wife and I to head back to our home in California. Importantly, I continue to be excited about Rapid7's terrific momentum and strong future. Initially defining and now leading the IT and security data and analytics market, Rapid7 has a terrific team who will continue driving the company forward with great success. With that, let's get into the numbers and provide some color around the business and our Q2 financial results. We'll then provide guidance for Q3 and the full year 2016 and as always, we will wrap up by opening the call to your questions. Reviewing our Q2 performance, three highlights stand out as we continue to drive successes with our customers. First, we delivered another quarter of compelling revenue and deferred revenue growth year-over-year, driven by our high visibility, highly recurring ratable revenue model. Second, we continue to make good progress on our path to profitability with another quarter of improving expense ratios. And third, we delivered a solid quarter of positive operating cash flow and we are very bullish on this dynamic going forward as a leading indicator of GAAP profitability and the value creation in the model. Before we get into some of the details around these three areas, let's briefly comment on the overall business strength and our solid customer traction in Q2. We were pleased to deliver a very strong implied get billings growth in Q2 of 45% on the heels of a solid pipeline and strong enterprise sales execution in the quarter. On our last conference call we highlighted the strength in our pipeline as the foundation for our strong anticipated billings growth in the second half of the year. Our pipeline commentary was and continues to be supported by demand in threat exposure management, including solid traction with Intel MVM customer migrations and increasing momentum with our InsightIDR platform offerings. We're very pleased with the Q2 business traction and would share of that it was driven in large part by more enterprise deals in Q2. Twice as much in dollars as in Q1 and candidly, more than we anticipated for Q2. We saw very strong close to the second quarter and it feels like $3-$4 million of the Q2 billings performance was a bit of an acceleration from Q3. It's terrific to have a number of deals that we anticipated for Q3 already closed in Q2. As we've said before, our enterprise deals can be lumpy and we manage their close rates over the course of several quarters rather than taking we can nail these all into specific quarters. Importantly, we had another quarter of strong year-over-year customer growth with our total customer base increasing by approximately 35%, as we ended Q2 with more than 5600 customers globally. We continue to see strong enterprise adoption and now have 37% of the Fortune 1000 as customers of Rapid7, up from 34% a year ago. Looking at another important economic and deal metric, we saw an anticipated sequential increase in new deal contract months from 24 months in Q1 to 27 months in Q2. As the increase in larger enterprise deals that tend to be for longer duration drove that metric from the lower Q1 result to be more in line with previous quarters. That brought up the total average contract length modestly to 23 months in Q2 from 22 months in Q1. Turning now to the details around our first highlight of strong revenue growth. Q2 total revenue came in at $37.3 million, an increase of 45% year-over-year and approximately $500,000 above the high end of our guidance. Products revenue increased 47% year-over-year, driven by both new customers as well as up-sells and cross sales within our base of existing customers. Maintenance and support revenue grew 43% year-over-year and our professional services revenue increased 40% year-over-year. From a geographic perspective, North America revenue grew 43% year-over-year, due to continued strong growth and customer adoption and represented 87% of revenue in Q2. Internationally we also delivered solid results growing 57% and contributing 13% of total revenue in Q2. And our channel partners contributed a fairly consistent 38% of total revenue in the second quarter. And looking at some more details around revenue, given our ratable model, one of the most important metrics remains total deferred revenue. Total deferred revenue grew 48% year-over-year in Q2 and was comprised of a healthy dynamic of strong year-over-year growth of 50% in short-term deferred and 44% in long term deferred. All in, we continue to have high visibility into our quarter results with 87% of Q2 revenue already on our balance sheet in deferred revenue as of the first day of the quarter, and 62% of our revenue being subscription based recurring in nature. These strong results are seen not only in new customer adoption, but also with continued existing customer uptake. This is clearly illustrated and our strong renewal rate, which increased to 126% in Q2 compared to 115% in the year ago period and benefiting from strong baseline renewals along with increase in up-sell and cross sales. This further validates the return on our investments in our cloud based data and analytics platform and our newer machine data search and the SIEM market upgrade cycle, in which we now find ourselves well positioned and garnering good pipeline traction with customers. And so far as our baseline customer retention, our expiring revenue renewal rate that measures the renewal of the prior year's revenue run rate increased to 89% in Q2 versus 87% in the prior year. We believe this is clear evidence that supports the two important dynamics of high customer satisfaction and stickiness of our platform. Moving to our second highlight for Q2, we are focused on managing our cost structure responsibly and driving stockholder value through a very deliberate path to attaining profitability. We believe Rapid7 has significant opportunities ahead and we remain committed to delivering long term sustainable growth to our stockholders through a disciplined approach to managing costs. In this regard, we were pleased to deliver another good quarter of non-GAAP gross margin with Q2 coming in at 77%, a nice improvement from 75% in Q2 2015 and the result is some nice efficiencies that we are continuing to see as we scale the business and continue to execute towards profitability. As we have said before, we feel good about the strong gross margin contribution profile that our business provides vis a vis our profitability goals. Accordingly, we look to our OpEx as the largest driver of an focus for efficiencies and scale in attaining profitability. And particularly, we look to drive greater sales efficiencies going forward, in addition to the increasing leverage in R&D and G&A where we're executing with increasingly efficient operations. More on this in a moment. Looking at Q2 non-GAAP operating expenses, the sales and marketing expense-to-revenue ratio was 55%, which was a slight improvement from last quarter's result of 57%. Overall, we expect to continue to see efficiencies in sales and marketing expenses as we move through the year, but we would also remind you that we typically see a spike in sales expense in the fourth quarter due to the mismatch between our large billings contribution of that quarter and our ratable revenue model. The other dynamic driving sales expense that we mentioned previously is that there could be some variability in the timing and magnitude of royalty expenses relating to transitioning Intel's MVM customers to Rapid7. We continue to see good traction in this area into the second half of the year and would expect some additional royalty expenses as a result. We watch our sales and marketing spend closely and will ensure it tracks sensibly with new customer wins, up-sells and cross sell momentum and pipeline generation. We're also focused on sales rep productivity as a measure of the return on these investments and our disciplined go-to-market engine. Turning to R&D, our non-GAAP R&D expense was 31% of revenue in Q2. This was flat sequentially as a factor of our meaningful and important new product launches with InsightIDR and Nexpose Now. Going forward, we are bullish on the efficiency of our engineering investments as Lee Weiner, our Chief Product Officer and the whole team continued to smartly build talent and at the same time shift costs offshore, such that we now have more than 45% of our R&D headcount located outside of the US. We expect continued marginal decreases in our R&D expense to revenue ratios in the second half of 2016 and beyond. Finishing out non-GAAP OpEx, G&A costs were 100 basis points better in Q2 2016 at 16% of revenue. Here too, we expect improvements in our G&A ratios for the balance of the year as we continue to realize scale in our processes and infrastructure running as a public company. Pulling this altogether, Q2 2016 non-GAAP operating loss was $9.1 million, better in our guidance. Non-GAAP loss per share was $0.22, also better than our guidance. Turning to our third and final highlight for Q2, positive operating cash flow. We ended Q2 with a cash balance of $84.8 million and our operating cash flow over Q2 was positive $1.9 million. This was largely driven by the strength in our customer traction and billings this quarter and was aided by some good continued work in capital management. As Corey said earlier, we are pleased with our operating cash flow generation and while we will see quarter-to-quarter fluctuations, we're confident in delivering meaningful positive operating cash flow this year and beyond. We view operating cash flow as a particularly important metric and leading indicator in demonstrating both our business success and our attainability and confidence around profitability. With that, let's now turn to our outlook for Q3 and the full year 2016, where we believe that our combined efforts of deriving strong continued growth in revenue and managing expenses in a very disciplined way will allow us to continue to progress on our journey towards delivering stockholder value. Our guidance for Q3 2016 is as follows. We anticipate total revenue to be in the range of $38.6 million to $40 million. This equates to solid year-over-year growth of 39% at the midpoint. We anticipate non-GAAP operating loss for Q3 to be in the range of $7.6 million to $8.6 million. And we anticipate non-GAAP loss per share for Q3 2016 to be in the range of $0.19 to $0.21. This is based on an anticipated $41.6 million weighted average shares outstanding. Our positive results year-to-date, along with our strong customer traction entering the second half of 2016 are catalyst for us now raising our full year 2016 guidance as follows. We expect total revenue to be in the range of $153 million to $156 million, representing 40% year-over-year growth at the midpoint. We anticipate non-GAAP operating loss for the full year 2016 to be in the range of $35.5 million to $38.5 million. And we anticipate non-GAAP loss per share for the full year 2016 to be in the range of $0.87 to $0.95. This is based on an anticipated $41.4 million weighted average shares outstanding for 2016. And finally, as Corey and I both mentioned, we're bullish on the overall operating cash flow profile of our model. We continue to expect to generate approximately $10 million of positive operating cash flow for the full year 2016 and to be free cash flow positive for the year. With that, we appreciate your time and support and as always, we are glad to open the call for any questions. Operator?

Certainly. [Operator Instructions] Our first question comes from the line of Saket Kalia with Barclays Capital. Please go ahead.

Hi, guys. Thanks for taking my questions here.

Hey, Saket.

Hey, guys. So first and foremost, Steven, sorry to see you go here, but glad we'll have at least another couple quarters with you.

Thanks.

So you know, just maybe first for you Steven, thanks for the color on the billings beat. Even excluding I think the $3 million-$4 million of earlier closing, you were still nicely ahead maybe duration help a little bit. But excluding this, was there anything from a product perspective that you found resonated better with some of the larger customers? Whether that was the new Nexpose version or perhaps a higher dollar version of MBM conversion? Any additional color with white the extra success in enterprise account this quarter would be helpful.

Sure. And then as always Corey and I will take. It's really two things. One as you said it was more the enterprise impact for the quarter, particularly sequentially we talked about in Q1 that duration, as well as the implied billings was something that did not grow as fast because of the lumpiness of enterprise, and you saw the other side of that year where we had very good traction with enterprise accounts and larger deals. And even better news in that is that it was fairly broad based. In other words, there was no one thing to point to, to say like it was that. When I look through the deals that we did for the quarter, it was pretty broad based on geography between North America and Europe, as well as Asia, Latin America, as well as by product meaning TEM, as well as IDR.

I think foundationally our team had very good execution and we expect that to continue. And secondly, customers are really seen the value of shifting from just providing data into providing information that delivers insight. And its customers are under resourced and constrained they value of the types of analytics that we are able to provide more and more and we definitely saw some momentum from that approach that's differentiated from a number of other different offerings on the market.

Got it. And then maybe for my follow up, maybe harder little for you Corey, can you just talk about the overall spending environment for threat exposure management? You talked about some of the better execution and faster conversions for MBM. But it seems like competitors also seem to have a healthy quarter. So do you think that threat exposure management, the overall market is maybe seeing a little bit of a longer tail for healthy spending the maybe other parts of security?

Yes. I mean, absolutely. If you think about the core value proposition, if you have the right information and you have the right analytics, it is quarter helping you prioritize what risk and what threats matter most to you and the less do that you can't really allocate your spend to actually manage the risk that your business have. And so more and more customers build security programs, they are looking at our technologies and other similar technologies to really help them understand what their biggest exposures are and then how they prioritize their total security spending budget to protect the things that most need protecting.

Got it. Very helpful, guys. Thanks very much.

Thanks, Saket.

Our next question comes from the line of Gregg Moskowitz with Cowen & Company. Please go ahead.

Okay. Thanks very much. And I'd like to go over Saket's comments Steven and I know you be a Rapid7 a little while longer, but best of luck with the move back home and congratulations to all of you in reporting extremely strong billings and accelerating growth. So I wanted to actually focus a bit on MBM. And you initially announced that partnership with Intel of course in Q4 last year. Obviously it take some time to build the pipe and I don't think you so much activity at all frankly in the first couple quarters of that relationship. But this quarter you did reference a large win and I was wondering if I can get a little bit more color around that, for instance is that customer spending a fair amount more with you than they did with Intel and if so, how would that be manifested in terms of Rapid7 products and services?

Steven and I will both talk to this one together. So the first thing is we announced as you mentioned Q4 of last year, we are going in the relationship in Q1 and Q2. Obviously Q2 was where we first started to see incremental momentum. The first half of the year for us is really about identifying the accounts and building the pipe. What I would say at this stage is that we are starting to see momentum ahead of where we originally thought it was going to be and that's an extremely positive thing. There is two factors that we always talk about when you look at this business. One is where we have lots of deals in pipe from existing Intel, MBM customers and we continue to convert those at a steady pace. The deal that Steven alluded to in his prior remarks was an example though of a large customer that looked to move over earlier than we anticipated, and we see several of those in pipe. So in general, we think that the MBM opportunity provides great long-term opportunity for the business we're starting to see it move ahead of our original expectations.

As we've talked about the deal earlier, even on announcement, the customers that are moving over are obviously much larger and have arguably weighted quite a while to do something. And so, the thought process was that there is an expectation of seeing larger deals sizes even on an apples-to-apples existing business basis, like some company has been doing something that maybe just looks at their network and really needs to have a much larger presence across devices and that point and what have you. And so we're seeing a nice multiple effect in our deal size just apples-to-apples not even considering all the good stuff that Corey was talking about on cross selling and all the other up-sell opportunities which are great and drive the economics. But just on apples-to-apples business we're seeing multiples and deal sizes as they do come over, and they help substantially into accounts and provides again another final for us to do that cross sale, up-sell.

Okay. It’s very helpful. And then InsightIDR it sounds like some really good early momentum. What are you seeing so far I guess with respect to net new deployments versus SIEM displacement if you are able to parse that even at a very high level?

We can. So we're seeing very fast conversions on net new deployments, which is very nice. So we're able to expand the market. And we're seeing the pipeline build rapidly on conversions, but as you would expect conversions take a little while longer, they have a longer sales cycle and we just introduced before InsightIDR product offering this year. That said, we've seen some of those conversions and migrations already start to convert.

The growth rate there as Corey was saying Gregg has been triple digit growth on both transaction and dollar size. So all sorts of flavors of goodness.

Okay, terrific. Thanks very much.

Thanks, Gregg.

Our next question comes from the line of Melissa Gorham with Morgan Stanley. Please go ahead.

Great. Hi, guys. Thanks for taking my questions. Corey and Steven, you talked about good strength in enterprise deals this quarter. Maybe if you could just maybe talk about what you are focusing your investments on in terms of moving further into the enterprise particularly as it relates to enterprise sales, what we should expect for the rest of the year and then what you're seeing in terms of sales productivity?

Absolutely. So the first thing is that our enterprise business is not just done field associates, we're also able to officially sell to the enterprise through our inside sales team, which really is key for allowing us to scale the economics of our model over time and we saw great evidence of that across our sales organization in Q2. So that's the first thing I'll say. The second thing is our focus on expanding the enterprise is really one of disciplined expansion of our built [ph] but continuing to leverage the extreme talent that we have on our inside sales team and the product differentiation that we have from our Nexpose now and our InsightIDR platform and what we're finding is that the ability to make customers more productive to deliver them in size that they are looking for allows us to position ourselves and still effectively into that larger part of the market and that's working well for us and we plan to continue to accelerate that.

Okay. That's helpful. And then I just wanted to hit on professional services because it was particularly strong this quarter. So you mentioned managed security, I think you also talked about incident response. I'm just wondering if you can maybe provide a little bit of color on the activity that you are seeing and then where you are out in terms of the capacity of resources there and if you have intentions to continue to invest in heavily in that business?

We have the capacity we continue to expand it. For us, professional services and our advisory services business is about helping our customers be successful as we expand. Steven and I have always stated that it will be less than 20% of the business sustainably. And so we really staff it to actually build the strategic relationship with our customers and that's the focus there. We are not a business that relies on massive staffing, and big growth in the professional service enterprise business of scale. So that's the first thing. So we feel quite comfortable where we are in our ability to be able to grow capacity and grow resource over time in line with our goals. The second thing is that we are seeing traction and interest from customers for our analytic response services and our managed services in general and that's as we expected. We knew and we've always known the customer struggle to properly staff their teams and as core part of our value proposition is allowing customers to either manage our technologies themselves to get the information insight they need or we can help them with that. And that ability to offer both approaches resonates well with customers.

That's helpful. Thanks. Good quarter.

Thank you.

[Operator Instructions] Our next question comes from the line of Jonathan Ho with William Blair and Company. Please go ahead.

Hi. Thank you very much. This is John Weidemoyer for Jonathan. I had a question, on competitive environment, so guys have certainly improved your situation with the two new products Nexpose Now and InsightIDR. Have you noticed a change in the competitive environment whether that's improved your watch [ph] significantly or if anybody else has applied any pricing pressure or exchange their behavior over the last two quarters?

Yes, we haven't seen any material change in the competitive dynamic. The biggest factors that we continue to see lots of opportunity in the market and in the space in more than anything the opportunity itself is what's driving the boat and I suspect it's something that our competitors are able to see also.

Okay. Thank you. And one of other question, your Nexpose Now, is that considered an enhancement of your current Nexpose offering? Does it preclude the need to even have the call the static version of the product, the existing product or is it the kind of thing where someone might want to buy both if for some reason they still wanted to do static VM thinking that maybe if they wanted to double check the dynamic approach might not have caught something. Can you talk a little bit about the coexistence if at all of those two offerings?

Yes, Nexpose Now includes our risk analytics and Threat Analytics, it really helps customers get a handle about their biggest exposures, but also includes the capability to actually manage and manage workflows around remediating. those exposures and analytics to go along with it. That said, there are certain industries and certain countries around the world that can't adopt the analytics, they are increasingly in the minority, but those do exist and there are some of those companies or organizations that choose to actually use the on-premise version of Nexpose and that's just fine with us because they take the great data, unique data that we provided and they put in their own analytics platform.

So for those that can use the newer version, the Nexpose Now, they can do both static and dynamic?

Yes. They can actually do the traditional reporting and analysis that we've always had, but they can also do the dynamic analysis that we now offer.

Okay, great. Thank you very much.

Thank you.

Our next question comes from the line of Michael Turits with Raymond James. Please go ahead.

Hey, guys. Thanks for taking the questions.

Hey, Michael.

And of course congrats to all and Steven all the best of luck it's really been awesome working with you.

Thanks, Mike.

So first on MBM first of all, we had to run out an estimate that kind of we usually, that will be in a kind of low 10s, maybe 15 million of incremental opportunity around MBM going forward, should I think now that it's a bigger opportunity than we might have originally expected based on the early deals what are your thoughts?

Yes. I think that our expectation is that the opportunity has increased over time. I think it still remains to be seen the pace of the movement of accounts. We had very modest originally, and we are seeing those expectations be slightly exceeded. What we're seeing from the early accounts is that it provides great access to a customer base that we haven't had yet, which provides good long-term economics for us.

Okay. On professional services, can you talk a little bit more about what the composition of them was and what did well, in particular because, one of the largest response companies had a weak quarter relatively speaking in incident response and talk about the scale and scope of some of those engagements narrowing. So are you doing certain response a similar types or was your success in other areas?

The nice part Michael is the blend of the work if you will across services has been pretty consistent and strong across the large buckets of that, the base level deployment and training sure okay, but then there's also the high value add, high margin security assessment business, as well as the strategic services around program development, program management. And that's where we've been able to really drive a mix across the last two buckets, the security assessment work and the strategic advisory work that's very high margin. And so, what we've always said is that work for us has not been that kind of knee-jerk I've been breached immediately I need millions of dollars. It's been driven by companies that are taking in more thoughtful approach to building a security program, whether that's the executive team or board or [indiscernible] new director of security. And so we have seen on a nice steady clip of growth. To Corey's point, it is not a body shop. So that's always going to be part of our model, but not the predominant part of it. Is just really driving both two things that are important, stickiness and then usage as it is I dynamic of the more you know the more you use. And so that's been very effective so far.

I would say unique to us is that we are clearly a product and technology company that provides strategic advisory services and so when we think about things like incident response, it really starts about how do we actually make sure that we are building a deeper relationship with our customer base. And so from that perspective, we have pretty consistent visibility and demand but lots at we have a rich set of customers from our for thought business.

Okay, guys. Thanks again and once again Steven all the best.

Thanks, Michael.

Our next question comes from the line of Gregg Moskowitz with Cowen & Company. Please go ahead.

Okay. Thanks very much I guys actually have one follow up. Actually you have some solutions architected for on-prem and others for the cloud, Corey, can you talk about the conversation that you're having with current and prospective customers around cloud and what you think that means for Rapid7 from a growth perspective going forward?

Absolutely. So the first thing is that we collected date all over. We have to my knowledge one of the most pervasive data collection ecosystems out there that looks across asset, inventory configuration, vulnerability, applications and users. And we allowed users to consolidate that data into one place. Because that's a massive volume of data and the complexity of ever customer managing that on-site would be tedious, we've offered a cloud base solution to both consolidates all of that data that customers want in one place and then allows them to do very deep and rich analytics on top of that data. So as we go out and talk to customers, the refreshing and affirming thing is that customers definitely want to consolidate and simplify the information data strategy. And they are quickly realizing that the best approach to do that is the cloud. But because of the data volumes and the cost. But when you combine cloud base source and economics which we've been able to deliver strong economics combined with the type of analytics that we've been able to bring to bear initially with security, then that creates quite a compelling and differentiated platform when you look across both the diverse and large volumes of data and the analytics that we provide. We are seeing that as a big adoption customer environments.

Fantastic. That's really good color, Corey appreciate that and congratulations again.

All right. Thank you very much.

That was our last question. I will turn the call back to Mister Thomas.

Thank you all very much for joining the call and again I want to reiterate Steven thank you for your commitment and everything that you've done and that you all for your time today.

Thanks, everyone.

Ladies and gentlemen, that does conclude the conference call for today. We thank you for your participation and ask that you please disconnect your lines.