Image source The Motley Fool.
Tenable Holdings, Inc. (TENB 0.34%)
Q4 2018 Earnings Conference Call
Feb. 04, 2019, 4:30 p.m. ET
Contents:
- Prepared Remarks
- Questions and Answers
- Call Participants
See all our earnings call transcripts.
Prepared Remarks:
Operator
Greetings and welcome to Tenable's Fourth Quarter Earnings Call. At this time, all participants are in listen-only mode. A question-and-answer session will follow the formal presentation. (Operator Instructions) As a reminder, this conference is being recorded.
I would now like to turn the conference over to your host, Andrea DiMarco, VP, Investor Relations and Strategy. Please go ahead.
Andrea DiMarco -- Vice President, Investor Relations and Strategy
Thank you, Operator, and thank you all for joining us on today's conference call to discuss Tenable's Fourth Quarter and Full Year 2018 Financial Results. With me on the call today are Amit Yoran, Tenable's Chief Executive Officer; and Steve Vintz, Chief Financial Officer. Prior to this call, we issued a press release announcing our fourth quarter and full year 2018 financial results. You can find the press release on the IR website at tenable.com.
Before we begin, let me remind you that we will make forward-looking statements during the course of this call, including statements relating to Tenable's guidance and expectations for the first quarter and full year 2019, growth and drivers in Tenable's business, changes in the threat landscape in the security industry and our competitive position in the market, growth in our customer demand for an adoption of our solutions, Tenable's expectations regarding long-term profitability and planned innovation and new products and services.
These forward-looking statements involve risks and uncertainties, some of which are beyond our control, which could cause actual results to differ materially from those anticipated by these statements. You should not rely upon forward-looking statements, as a prediction of future events. Forward-looking statements represent our management's beliefs and assumptions only as of today and should not be considered representative of our views as of any subsequent date. We disclaim any obligation to update any forward-looking statements or outlook.
For a further discussion of the material risks and other important factors that could affect our actual results, please refer to those contained in our most recent quarterly report on Form 10-Q filed with the SEC on November 8, 2018, and subsequent reports that we file with the SEC, which are available on the SEC website at sec.gov.
In addition, during today's call, we will discuss non-GAAP financial measures. These non-GAAP financial measures are in addition to and not substitute for or superior to measures of financial performance prepared in accordance with GAAP. There are a number of limitations related to the use of these non-GAAP financial measures versus their closest GAAP equivalents. Our earnings release that we issued today includes GAAP to non-GAAP reconciliations for these measures and is also available on the Investor Relations section of our website.
And now, let me turn the call over to Amit.
Amit Yoran -- Chairman and Chief Executive Officer
Thank you, Andrea. And thank you for joining us on the call today. I'm pleased to share that Tenable delivered another strong performance as we closed out 2018 on a high note. Revenue in Q4 grew 39% year-over-year to $75 million and calculated current billings grew 36% year-over-year to $97 million. Our strong momentum highlights the rising importance of and growing investments in Cyber Exposure. As we talk to customers in the field, we consistently hear that vulnerability management remains a top priority for 2019. Understanding and reducing cyber risk remains a strategic C-Suite and Board level issue. Tenable is increasingly recognized as a strategic and foundational component of these efforts. With the successful Q4 in 2018 behind us, we'd like to highlight while we believe Tenable is a category-leading security company.
First, we continue to believe the vulnerability management market is much larger than anticipated by traditional market research, given the rapid proliferation of connected devices. Second, we are marching through the enterprise adding hundreds of new logos every quarter and consistently increasing our six-figure customer base. And third, we are reinvigorating VM and pioneering enterprise understanding of Cyber Exposure, including the broader attack surface in corresponding business impact. The discovery and disclosure of vulnerabilities only continues to grow in volume and pace. While there are considerable amounts of legacy in end-of-life applications still posing residual risk, the proliferation of connected devices increased the surface of attack and created more and more vulnerabilities. One of the biggest drivers for our success continues to be this digital transformation. According to Gartner's February 2018 forecast, IoT security worldwide 2018 (inaudible) IoT endpoints will grow at a 32% CAGR reaching an installed base of 25 billion units by 2021.
As such, a growing number of our customers are expanding their deployments to include these modern asset types, such as cloud, web applications, containers, operational technologies and Internet of Things. The rapid growth we are seeing in cloud, IoT and non-traditional devices validates our view that the VM market is much bigger than forecast developed by traditional market research.
We expanded our IoT asset coverage across both Tenable IO and Tenable.sc last year. Our coverage of embedded devices, point-of-sale systems, teleconference and surveillance devices and other IoT assets grew over 50% in the second half of 2018 versus the first half. Cloud asset coverage grew over 3x in the second half of 2018 compared to the first half. The momentum in cloud deployments is robust and driving strong adoption of our Cyber Exposure solutions.
On the operational technology front, we continue to make meaningful progress. Originally only available on Tenable.io, we have added OT capabilities to Tenable.sc in Q4. In Q4, we also sold our first six-figure Tenable.sc industrial control system bundle, an exciting win with a major oil and gas joint venture. This example is more evidence of increasing IT-OT convergence within organizations.
We're seeing more OT security purchasing power shift to include input from the CISO suite. This placed the Tenable's strength in the market and created a broader opportunity for us to assess of the IT and OT environment. When I talk to customers, they are in various stages of their digital transformation and tried to get visibility into all of the new connected devices. We recognized the VM is the foundation of a solid fiber strategy. That's what they're looking to do VM more holistically with breadth across all asset types, many of which they currently lacked visibility into. We want to do a better and more efficiently with greater depth of analytics. They want a Cyber Exposure solution.
With that, I'd now like to highlight a few noteworthy new six-figure customer wins in the quarter. A large European insurer purchased Tenable.io with web application scanning, PCI and container to overhaul the VM strategy and start maturing their Cyber Exposure understanding. This company need a solution that would align to their transformative, global digital plan and deliver a solution and a complex environment across traditional and modern asset. This example highlights a typical customer journey from VM to Cyber Exposure. Another new customer win is a multi-platform purchased both SC and IO together by a national healthcare company. This company had a very manual and unsustainable VM effort. They quickly realized the need for an enterprisewide solution to manage their growth and reduce the risk of new vulnerabilities. They ultimately purchased SC and also IO for external scanning processes. They chose Tenable due to our hybrid offering and our scalable enterprisewide Cyber Exposure vision. While this was a modest competitive displacement, it was also largely greenfield as the incumbent was only used for external scanning.
I would also like to share a couple of six-figure Nessus up-sell wins in the quarter. A global e-Commerce company purchased Nessus last year and was looking for a more strategic VM solution in addition to considering cloud and container security as separate project efforts. This customer recognized the value in Tenable.io's unified strategy that included cloud and container scanning all in one platform and purchased Tenable.io plus container coverage. Another six-figured Nessus up-sell win is an SC win for a national healthcare company. This company was also looking for scalable strategic on-premise Cyber Exposure solution. They chose Tenable for our scalable architecture, our hybrid offering and our reliable brand.
We also continue to expand our leadership position in the public sector. Maintaining a clear leadership position in the public sector is a priority and we strengthened that lead during the fourth quarter. Tenable was awarded an expanded seven-figure contract with the Department of Defense to provide assured compliance assessment solution called ACAS. For over five years, DISA, the Defense Information Systems Agency, and the Defense community have relied on Tenable and ACAS as the de facto enterprisewide solution for VM.
We look forward to continuing to provide DISA and the DoD with a fast, accurate, cost-effective and highly scalable VM platform to detect encounter known cyber threats to DoD enterprise assets in real time.
And lastly, we had another large scale expansion at a Fortune 100 retailer. This retailer expanded from 500,000 assets in early 2018 to a million assets this past summer and then 2 million assets in the fourth quarter and there continues to be a great growth opportunity in the account. This customer is a great example of the expanding needs of enterprises to assess Cyber Exposure across traditional and modern assets covering everything from web properties to point-of-sale devices.
To build on our market leadership, we made a decision earlier in 2018 to increase our investment in research to help our customers accelerate their Cyber Exposure transformation and help us focus our efforts on the rising issues that matter most to our customers. Our 2018 vulnerability intelligence report found that enterprises identify an average of 870 new vulnerabilities daily with over 100 various critical on the common vulnerability scoring system, CVSS, which is an industry standard measurement.
The current lack of rigorous prioritization suggested organizations are struggling to remediate these increasing vulnerabilities and consequently are unable to make strategic technology decisions. In the fourth quarter, Tenable announced predictive prioritization capabilities for both our enterprise platforms, SC and IO. Predictive prioritization combines Tenable collected vulnerability data with third-party vulnerability and threat information, but analyzes them together with the advanced data science algorithms developed by Tenable Research.
These data science algorithms analyze vulnerabilities using machine learning to anticipate the probability of a vulnerability being leveraged by threat actors. This innovative capability enables organizations to focus on the approximately 7% in vulnerabilities with reliable public exploit and focuses resources on an even smaller portion of those most likely to be exploited by threat actors down to just 3%.
Predictive prioritization will be made available over the next few weeks and months as a core capability for our enterprise customers. This is yet another example of Tenable extending our leadership position and differentiating ourselves with our Cyber Exposure vision. Looking ahead, we continue to advance the development of our Cyber Exposure scoring, benchmarking and peer comparison product, Lumin.
During our beta customer discussions, we received valuable feedback that prioritization of vulnerability, which was originally contemplated as part of Lumin, was viewed as something that should be a core component of those base VM use cases and platforms. Given the enthusiastic feedback, we accelerated the development to build predictive prioritization into SC and IO to make sure all of our enterprise platform customers had access to this critical functionality. Lumin will build upon and greatly expand the value of predictive prioritization by providing a deeper layer of insight based on asset criticality data. Criticality data enriches vulnerability information, with the assets' business context to strengthen the overall Cyber Exposure score. Lumin will also help customers measure and benchmark their Cyber Exposure with over time and against their peers. We remain very excited about the opportunity for Lumin in 2019.
Before I move off product innovation, I want to note a new addition to our product organization. Ofer Ben-David is joining as our new Chief Product Officer. Ofer will lead Tenable's global product organization into the next phase of Cyber Exposure solutions for managing and measuring cyber risk in the digital era. He is one of the most respected and innovative engineering leaders in enterprise software having built large scale cloud-based and on-premise solutions for some of tech's most iconic companies.
As we continue to push the pace of innovation in the market, we also remain focused on strengthening our reach through strategic partners and integrations. In the fourth quarter, we announced an integration with AWS Security Hub that is designed to provide users with a comprehensive view of their high-priority security alerts and compliance status.
We also announced that Tenable.io is now available for purchase in the AWS marketplace. This allows customers to seamlessly build VM including the automated discovery and assessment of cloud infrastructure assets to manage, measure and reduce cyber risk across cloud environment.
Now, let me turn the call over to our Chief Financial Officer, Steve Vintz, and then I'll come back to summarize in the end.
Steve Vintz -- Chief Financial Officer
Thanks, Amit. The fourth quarter marked a strong finish to a very successful year for Tenable. Let me dive deeper into the quarterly results, as well as highlight the full-year 2018 financial results and our business outlook for the year ahead.
I'll begin by reminding you that except for revenue, all financial results we will discuss today are non-GAAP financial results. Unless stated otherwise, as Andrea mentioned at the start of this call, GAAP to non-GAAP reconciliations may be found on our earnings press release issued earlier today and on our website.
Now, onto the results for the fourth quarter. Revenue for the quarter was $75.2 million, representing 39% growth over the same quarter last year. It's worth noting that 90% of our revenue in Q4 was recurring, which is a benefit of our subscription model. As you may recall, we include revenue from subscription and maintenance contracts in recurring revenue, but exclude professional service and perpetual license revenue, as such amounts are not available for future renewal. Since we're on the top of perpetual licenses, as a reminder, in 2017, we began recognizing revenue from perpetual licenses ratably over five years in accordance with ASC 606.
With that as a backdrop, I want to walk you through our calculated current billings. We believe calculated current billings is a good proxy of the underlying momentum of our business, as it generally correlates to annual contract value and that's how we manage the business. Calculated current billings, defined as the change in current deferred revenue plus total revenue recognized in the period, grew 36% year-over-year and $97.3 million in the fourth quarter of 2018. This growth in scale is a testament to the rising importance of VM and the broader Cyber Exposure opportunity that we are addressing.
Let's discuss customer momentum, which is an important driver of growth for us. In the fourth quarter, we added 337 new enterprise platform customers with an increasing mix toward larger deals. In terms of large deals, we added 66 net new six-figure customers in the quarter. These are customers who spend in excess of $100,000 annually on an LTM basis. This represents the largest number of net new six-figure customers in our Company's history. This brings the total number of customers spending in excess of six figures to 453. The takeaway here is that we are seeing strong demand in enterprise, both domestically and abroad, and are experiencing continued momentum adding new customers and expanding the value of the relationships with existing customers.
I will now turn to expenses and profitability. Gross margin was 85% in the quarter, which is the same as last year and up from 84% in Q3 of this year. As a reminder, we are making investments in our public cloud infrastructure in connection with the delivery of our Tenable.io platform. These investments are scaling better than expected and having less of an impact on gross margin short-term. However, we continue to add new functionality and that points of presence globally and long-term expect gross margins to settle in the low-80s to high 70% range over time.
Now turning to operating expenses. We are focused on improving operating leverage in our business over the long term, but in the short term, we are investing for growth. Sales and marketing expense in Q4 was $44.5 million compared to $32.2 million in the fourth quarter last year. This represents 39% of total revenue for the quarter, down from the mid 60% range in the first half of the year. As a reminder, sales and marketing spend as a percentage of revenue, it's typically higher in the first half of the year due to a large number of industry and other events, as well as incremental investment in sales capacity in the first half of the year, which produces leverage over time.
R&D expense in Q4 was $19 million compared to $15.2 million in Q4 last year. As a percentage of revenue, R&D was 25% versus 28% in Q4 of last year. Innovation remains a top priority for us, across all our products, but especially around data science, analytics and coverage of new paradigm assets including OT, IoT cloud and containers.
G&A expense was $11.2 million for the quarter compared to $7.8 million last year. As a percentage of revenue, G&A was 15% versus 14% in Q4 of 2017. The increase largely reflects new costs associated with being a public company.
Our non-GAAP loss from operations in the quarter was $10.8 million. This compares to a loss of $9.2 million in the fourth quarter last year. Non-GAAP operating margin was negative 14% compared to negative 17% for the fourth quarter last year. Pro forma non-GAAP net loss per share was $0.12, which was better than our guidance of a loss of $0.15 to $0.14 per share.
Focusing on the balance sheet, we finished the fourth quarter with $283.2 million in cash and cash equivalents and short-term investments. It's also worth noting, we early adopted the new lease guidance in Q4 as of January 1 2018. The new guidance does not change how we record rent expense, but required us to de-recognize the previously recorded construction in progress asset and related financing obligation, with building our new headquarter. For existing leases, the guidance also requires a balance sheet gross-up of a liability for the present value of the remaining lease payments and a corresponding right-of-use asset that is combined with the lease incentives. As such, we had $10.3 million of operating lease liabilities and $8.5 million of right-of-use assets at December 31, 2018.
In terms of cash flows, our free cash flow burn was $3.1 million for the quarter compared to a burn of $6.6 million for the fourth quarter of 2017. As a reminder, we started our ESPP program in August, which contributed $4 million to our free cash flow in the fourth quarter. The first stock issuance will be on March 1st of 2019. And our free cash flow in Q1 is expected to be negatively impacted by $5 million to $6 million from the contributions previously received, as they a reclass to a financing activity. On an annual basis, however, the ESPP is not expected to have a significant impact on free cash flow.
Overall, we are pleased with the efficiency and cash flow of the business. As a reminder in 2019, we expect to incur approximately $10 million of non-recurring CapEx, related to the build-out of our new headquarters, which will primarily impact free cash flow for the second half of the year, although we continue to target turning free cash flow positives by the time we exit 2020.
Quickly touching upon the financial highlights for the full year, revenue was $267.4 million, an increase of 42% over 2017. Calculated current billings was $326.1 million, an increase of 38% year-over-year. Gross margin was 85% compared to 87% in fiscal 2017. Non-GAAP loss from operations was $49.1 million or 18% of revenue compared to $32.4 million or 17% of revenue last year. And finally, free cash flow burn was $8.3 million, inclusive of $6.3 million of ESPP contributions, which represents a burn of 3% of revenue in 2018.
Now let's turn to guidance. For quarter of 2019, we currently expect revenue to be in the range of $77.5 million to $78.5 million; non-GAAP loss from operations to be in the range of $17 million to $16 million; non-GAAP net loss in the range of $18 million to $17 million; and pro forma non-GAAP net loss per share in the range of $0.19 to $0.18, assuming a weighted average common shares outstanding of 93.2 million.
For the full year 2019, we currently expect revenue of $338 million to $343 million; calculated current billings of $410 million to $415 million; non-GAAP loss from operations in the range of $60 million to $55 billion; and non-GAAP net loss in the range of $59 million to $54 million; pro forma non-GAAP net loss per share is expected to be in the range of $0.62 to $0.57, assuming weighted average common shares outstanding of 95.1 million.
As it relates to guidance, our outlook contemplates lower contribution from the US Federal government in Q1 due to uncertainties surrounding federal procurements, which we believe will have little impact on the year overall.
And now, I'll turn the call back to Amit for some closing comments.
Amit Yoran -- Chairman and Chief Executive Officer
Thanks, Steve. In summary, we continue to be excited about the opportunity in vulnerability management and pioneering Cyber Exposure. We're partnering more and more with customers interested in the strategic approach to understanding their cyber risk. We believe the combination of our differentiated technology even stronger now with predictive prioritization and our strategic approach to the VM market position Tenable to successfully aid our customers in this journey.
We'd now like to open the call up for any questions.
Questions and Answers:
Operator
Thank you. At this time, we'll be conducting a question-and-answer session. (Operator Instructions) Our first question comes from the line of Melissa Franchi with Morgan Stanley. Please proceed with your question.
Melissa Franchi -- Morgan Stanley -- Analyst
Okay, great. Thanks for taking my question. I mean, you had a very good enterprise customer adds this quarter. I'm just wondering if you can talk about the runway that you have within your Nessus space in terms of upgrades. I think the last metric we had was maybe 19,000 Nessus customers and now you have over 6,000 enterprise customers. So what's a reasonable conversion rate in terms of that base going into SC or IO and then have you seen any change in the conversion in the most recent quarter?
Steve Vintz -- Chief Financial Officer
Hello, Melissa, this is Steve. I'll take a shot here. So, we have a total of 27,000 total customers as a whole and most of those are Nessus Pro customers. As we mentioned before, Nessus is a cost effective way to feed (ph) the market, but it is also on a ramp to a larger platform sale, on average as much as a third of our total enterprise sales can come from the paid Nessus customer base. With that as a backdrop, over the past couple of quarters, we made a point of emphasis here to highlight the growth and momentum in enterprise, and we think the growth and momentum in enterprise is reflective; A, of the product set; B, of the go-to-market that we have somewhat unique in the sense that (inaudible) the market plus we're building out the enterprise capability and distribution. So overall, the pull-through that we're gaining from Nessus does lift enterprise and then once we land the customer whether it's a new logo or an up-sell from a paid Nessus customer. We have a history, of course, as you know, expanding the relationship with our asset-based pricing model.
Amit Yoran -- Chairman and Chief Executive Officer
Yes, I think the only thing I would add to, there is recent efforts in the product organization to add new and innovative capability to the Nessus product line as well. First is the addition of live results to Nessus, which we think is very innovative and very compelling where as new vulnerabilities are discovered a lot of times you don't have to go out and do a rescan which environments can be very complex, but you have very good telemetry already collected and visibility and understanding to a vast majority of new vulnerabilities whether or not you have them before you even conduct a new scan, as well as a series of capabilities which we will be launching in the near future, which we believe will increase our Nessus pull-through, so some ties between the Nessus Professional customer base and uplifted capabilities, they can get using those products in conjunction with the enterprise platform products. And we think there is a compelling opportunities not yet really been tapped into or monetized in a strategic way.
Melissa Franchi -- Morgan Stanley -- Analyst
Okay, that's helpful. And then just following up with Steve. Steve, your comments on federal for Q1 were helpful. I'm wondering if you could just elaborate a little bit, specifically if you saw any disruption in Q4 from the federal closure. And then if you could maybe quantify the extent to which you're assuming some disruption in Q1 and if you're seeing the backlog starting to open up already?
Steve Vintz -- Chief Financial Officer
Sure. Well, first and foremost, in Q4, it was an area of outperformance for the Company, I think, versus the guidance. It was -- calculated current billings , a little more than $4.5 million. We're pleased with the results for Fed in the fourth quarter. So the uncertainty surrounding Fed had no impact on the fourth quarter for us. For the whole, Fed represents less than 15% of our total sales with a sizable percentage of that coming in the third quarter as you know due to the Fed's fiscal year-end. We do close new business throughout the year -- new and renewal business and the outlook today, as I mentioned earlier, contemplates lower contribution from Fed in Q1 with offsetting amounts in Q2 and Q3. So while we believe uncertainties surrounding Fed will not impact calculated current billings, for the year as a whole, it it does more modestly impact revenue and therefore profitability in Q1 just due to later quarterly flow. In that side, our guidance reflects strong outlook in Q1 in the year as a whole, and we're pretty excited and confident about our US Federal business and believe long-term, it takes significant compelling opportunity for us.
Melissa Franchi -- Morgan Stanley -- Analyst
Fair enough. Thank you very much.
Operator
Our next question comes from the line of Sterling Auty with JPMorgan. Please proceed with your question.
Sterling Auty -- JPMorgan -- Analyst
Yes, thanks. Hi guys. Wanted to follow up on, I think, the comment you made in the prepared remarks about some of the deal size within probably enterprise and the 100K (ph) plus ARR accounts. Just wondering, are you seeing bigger initial deals as well as expansion deals and specifically within the expansion, how much of that are you seeing coming from customers, as you mentioned just adding more devices and broader coverage within the Company versus adding more feature functionality to their relationship with you?
Amit Yoran -- Chairman and Chief Executive Officer
Sterling, it's a great question. I think, very clearly for us, the answer is both. We're seeing larger -- as we become more enterprise oriented in our go-to-market motions, messaging our positioning, moving upscale in the enterprise, we're seeing larger initial lands and buys. And I think that's also reflective of organizations with very mature largely greenfield in their understanding of cyber, which are stepping in a meaningful way, as well as continued beating at the war drum and expansion in our existing enterprise accounts and moving them down that journey from tactical VM to much more strategic motions. Steve, I don't know if you have any additional comments?
Steve Vintz -- Chief Financial Officer
No. We have a land and expand model, so it a combination reflecting higher lands and also more attractive expands and we have 27,000 total customers. Even though we added a record number of net new six-figure customers in Q4 and clearly we're demonstrating momentum in enterprise, the total number of six-figure customers is 450 (ph). So we have a substantial opportunity right in front of us within our own customer base, even though we're adding hundreds of new customers a quarter.
Sterling Auty -- JPMorgan -- Analyst
All right. Great. And then one follow-up, you mentioned the momentum in the go-to-markets, how would you characterize the ramping of the resources that you added as you were coming public and kind of where do you stand now, and how should we think about incrementals of the marketing investment that you outlined? How much of that is really going to be count driven to add capacity versus maybe some of the marketing aspect to drive awareness?
Steve Vintz -- Chief Financial Officer
It's a combination of both. In terms of -- we've been clear about our investment strategy. A new dollar invested has a pretty short payback; on average is 12 to 14 months for the Company, gives us confidence and conviction to continue invest in sales? So adding sales capacity. I will say headed into 2019, we have a more mature sales force now than we did this time last year. Over 50% of our sales force is in some phase around, but we have a higher percentage of reps that have been here 12 months or longer. So we're pleased to see that. The other lever -- so we're going to continue at sales capacity given the paybacks and the strong unit economics. The other lever for us is channel. We're the only company in the VM space that has a 100% commitment to the channel. We think that's important. We are seeing continued increases in channel and business. Years ago, 4% of our sales or even down from the channel and today -- and that continues to increase to a very meaningful percentage. So lots of levers, we can pull in our go-to-market, one is, Nessus in terms of ability to feed the market and create awareness, two is, in terms of building up distribution with feet on the street and adding sales capacity, and the third thing, is pulling the levers on the channel, which we think is really important.
Sterling Auty -- JPMorgan -- Analyst
Great, thank you.
Operator
Our next question comes from the line of Jonathan Ho with William Blair. Please proceed with your question.
Jonathan Ho -- William Blair -- Analyst
Hi, good afternoon. Just wanted to start out with Lumin. Can you give us maybe a little bit of an update in terms of the timing for release and maybe what the expectations are in terms of billings and revenue that are maybe built into your 2019 guidance?
Steve Vintz -- Chief Financial Officer
Yes, I'll start with -- a little bit with the Lumin timing. As you know, we've, throughout the later part of 2018, embarked on a beta program with a number of significant customers, processed that feedback. We actually took what many of our customers told us was very compelling capability in the Lumin beta, but capabilities they felt was really a core use case or a core capability for the VM use case -- the vulnerability management use case. And that was this concept of predictive prioritization today. You know, hundreds of new critical vulnerabilities discovered every day and -- just using CVSS scoring and how do you prioritize, what matters most, the inclusion of threat, intel and exploitability in using a lot of data science models that our team has built, and the feedback we got was, hey, that's great capability, it's compelling differentiation, but because it's the prioritization of vulnerabilities, our customers felt like, it was really something they would like to see in our core VM platform. So we've moved -- added that predictive prioritization to both Tenable.sc and Tenable.io and so we've accelerated those motions in the enterprise platforms.
We've drawn a line, if you will, honing in on the Lumin capabilities to extend outside of core VM use cases specifically to assess and understand the criticality of assets, the business context around those assets and then all of the capabilities that we've been developing around benchmarking and peer comparison, which are really business types of analytics outside of the core VM use case, and we're confident based on the beta feedback that those are products or those combinations of capabilities form a product that we can charge for separately in Lumin and we anticipate that being delivered as we said previously in 2019.
Amit Yoran -- Chairman and Chief Executive Officer
And in terms of our guidance today, it does not reflect any meaningful contribution from the sales of Lumin.
Jonathan Ho -- William Blair -- Analyst
Thank you. Can you also, as a follow-up, just give us a little bit of a sense of what Ofer brings from the Chief Product Officer standpoint and maybe what potential changes could signal in terms of your product strategy?
Amit Yoran -- Chairman and Chief Executive Officer
Yes, I think, it's -- there really isn't a strategic change in the product strategy. It's sort of an increase of scale and capability as we step onto a larger stage of a larger development organization. We're committed to both the on-prem customer base, the cloud-based capability and really what we found is the hundreds and hundreds of customers, which have chosen hybrid based approaching, I think, that sort of accurately reflects how customers most frequently live in their IT environments. And so, I think, Ofer brings a very strong experience base to the table both for our on-prem enterprise software, for cloud-based SaaS architectures and delivering these capabilities at scale. So, we're really excited about his add to strengthen the team.
Jonathan Ho -- William Blair -- Analyst
Thank you.
Operator
Our next question comes from the line of Gur Talpaz with Stifel. Please proceed with your question.
Gur Talpaz -- Stifel -- Analyst
Okay. Thanks for taking my questions. Amit, you talked about servicing new vectors like IoT, containers and cloud, and you also talked a lot about the continued success in pushing upstream to the enterprise. And I guess what I wanted to ask first was, are these two functionally interrelated, meaning, are you seeing better success in the enterprise because you're able to service the non-traditional environments relative to your peers?
Amit Yoran -- Chairman and Chief Executive Officer
You know, I think the answer is both. I think that there is a -- I think the market and some of the analysts out there are putting out adjusted guidance as to the attractiveness of the core VM market. So, I'm a firm believer that there is still continued attractive growth opportunity for Tenable and to all VM providers in that core VM market. That said, we do see significant, I think, differentiation in our strategy and our investment in this broader Cyber Exposure category. So, it's a meaningful capability. We are seeing increased adoption of these new modern asset types among the enterprise platform customers and even for those customers that are not yet adopting those modern asset types, they're asking informed questions about our capabilities in those areas because there signifying that while the CISO might not yet have responsibility for the OT environment or for the IoT environment, they know that these things are coming and they want to be prepared in having a provider that gives them the visibility and the confidence to assess those infrastructures I think is a critical differentiator.
Gur Talpaz -- Stifel -- Analyst
That makes sense. And maybe an extension of that question. You said something on the call that I thought was interesting talking about sort of IT-OT convergence and the increasing importance of the CISO in some these OT environments. And what I sort of want to know was, does your breadth of coverage, meaning your ability to service both IT and OT, is that a differentiator versus the kind of the new start-ups that are coming out there that only do OT environments are a pure play in nature and can span across the spectrum like you can?
Amit Yoran -- Chairman and Chief Executive Officer
Yes, I think it's critical -- and that's a great question. I think it's critical in two different aspects. In one aspect, OT environments today are almost never pure OT. By definition, they are convergence of general purpose compute their -- all of the traditional IT assets have completely invaded even stand-alone OT environments. So our ability to assess both IT and OT in an elegant fashion gives us a much better understanding of the true risk of those operations as opposed to a kind of point product that is strictly focused on the OT componentry without an in-depth understanding of the IT that is part of that environment.
The second dimension that I think is a strategic advantage for us is that, unlike previous years where you saw operators keeping the CISO in the IT departments at bay, saying, hey, these are OT, this is operational technologies, it's very different, you guys go play in your IT sandbox, we got this covered. I think the recent awareness of cyber issues in the OT world has caused those operators to turn to their CISO and say, hey, can we get some help here. So we're seeing great, over the last year, an increasing influence of CISOs in helping operators understand their OT environment. And so it is a position of strength that we have with this brand, that we have the trust, that we have the customer base and the confidence from the CISO, so that when questions come up about discovery and understanding of the level of exposure in OT environment, how to assess them as the beginning of this journey, that trusted relationship with the CISO is really a leg up for us.
Gur Talpaz -- Stifel -- Analyst
That's really helpful. Thanks a lot.
Operator
Our next question comes from the line of Gray Powell with Deutsche Bank. Please proceed with your question.
Gray Powell -- Deutsche Bank -- Analyst
Thanks for taking the question, guys. Just a couple on my side. So to start, can you talk about the pace at which you see customers developing more formalized vulnerability management programs. I think at some point, last quarter you mentioned that about 40% of new customers, did not have a formalized program in place before signing with you? So, is that correct and is that a good proxy for the portion of the market you think is a greenfield opportunity?
Amit Yoran -- Chairman and Chief Executive Officer
Yes, that's one that we measure pretty consistently coming especially from our largest deals or largest accounts -- a couple dozen largest accounts -- a couple dozen largest accounts every quarter were those deals coming to us from and understanding who are we displacing or not displacing, and some quarters, it's 40%, 40% plus; some quarters, it's 25%. And so it does vary quarter to quarter, but I think order of magnitude third -- roughly a third of the enterprise customer base comes to us or new customers come to us what we characterize as greenfield. And by greenfield that doesn't mean there's absolutely no VM, it means that our NAV (ph) and enterprise wide VM programs. So they might be looking at specific PCI systems and compliance requirements, maybe particular data centers or architectures or types of systems or business units, but it's really not an enterprise VM program. And so, in any given period, about a third of the new sales come to us from what we characterize as largely greenfield market opportunity.
Gray Powell -- Deutsche Bank -- Analyst
Got it. That's really helpful. And then just to follow up on the predictive prioritization comments. So is there an impact to SC and IO pricing of adding predictive prioritization to those products? And then just how big of a differentiation is that versus your closest competitors?
Steve Vintz -- Chief Financial Officer
There is no currently contemplated price uplift from -- or to the SecurityCenter and Tenable.io customer base. We think it is a compelling capability. it's compelling differentiation and we've heard that in the beta cycles when this capability was originally part of the Lumin product, and so we anticipate pretty broad adoption and we also think it will help set the stage for broader adoption and more up-sell capabilities.
Gray Powell -- Deutsche Bank -- Analyst
Got it. Okay, Thank you very much.
Operator
(Operator Instructions) Our next question comes from the line of Dan Ives with Wedbush Securities. Please proceed with your question.
Daniel Ives -- Wedbush Securities -- Analyst
Yeah, thanks. So my question is when you're taking a typical customer life-cycle and trying and convert them to more of the VM suite, we take us through maybe the opportunities and -- but even the challenges in that progression from the sales cycle perspective?
Amit Yoran -- Chairman and Chief Executive Officer
Yes. I think the opportunity can be externally driven, can be brought in through marketing activities, it can be brought in through broader awareness of activity happening in the security industry. So typically breach occurs, Audit and Risk Committee Chair, CEO, Board of Directors, CIO they'll be start asking questions, well, how secure are we, how exposed are we, are we vulnerable to that and when you ask those types of questions, the foundational system of record, for answering those questions ultimately is the VM program. And so there are an external set of activities whether they're driven by sales, marketing or other market activity, which could spur maturation of the VM program, as well as internal-based driver. So new CISO comes in, new CIO comes in wants to new program gets launched, company wants to embrace new technologies, whether it's cloud, OT, digital transformation, automation, robotics and manufacturing or warehouse and inventory management, all of those types of initiatives can frequently spur questions around security and the need for an enterprise understanding of risk associated with embracing those transformation. So I think both those external and internal drivers exist.
Daniel Ives -- Wedbush Securities -- Analyst
Got it. Okay. So just on the government -- in terms of -- we're getting a lot of questions from investors on it. How should we think, not exact breakup, but in terms of the government's side, you talked about DoD, so obviously none of the Military affected. But on the civilian side, how should I think the government business in terms of the exposure to Civilian and Homeland Security versus DoD and Military ?
Steve Vintz -- Chief Financial Officer
No. We would characterize it as really all the same and -- look, 15% -- approximately 15% of our sales come from the Fed. We've a very sizable footprint within the Fed. We serve most three-letter federal agencies as a source of pride for the Company. That said, just given some of the uncertainty surrounding it, we chose to take a more cautious tone (ph) specifically in the first quarter and what we commented was that probably flow from Fed will be more modest in Q1, but we're -- we view that largely as timing. And as a result, we think from the billings perspective will offset that in Q2 and Q3. But -- less of -- I guess less of an impact on civilian and more so really on the DoD side of things.
Daniel Ives -- Wedbush Securities -- Analyst
Got it. Thanks a lot guys.
Operator
Our next question comes from the line of Josh Hilton with Berenberg. Please proceed with your question.
Josh Hilton -- Berenberg -- Analyst
Hi. Thanks for taking my questions. In regards to the IT-OT opportunity, are you seeing situations where a Siemens or Rockwell or automated factory do some type of IoT build-out for a smart connected factory and then bring Tenable into the security side or maybe just some high level commentary on what's driving the deals on the OT side?
Amit Yoran -- Chairman and Chief Executive Officer
Yes. I think the OT side is really coming to us from two different motions. It's either our engagement with the CISO and CISO having an increased role and responsibility in OT environments. We are going through our strategy, our vision for Cyber Exposure in the market opportunity, just kind of talking them through the requirements and the capabilities there tends to uncover requirements that are not currently being addressed by existing providers or new responsibilities being picked up by the CISO. So the second, as you suggest, comes from a more OT-focused discussion. We announced, about a year ago, a strategic global partnership with Siemens. The first phase of that partnership was really focused on helping us, refine and expand many capabilities of our products in OT environment. So you might imagine these are extremely complex environments getting access to the types of data sets and systems deployed there making sure that we understand both the protocols, the applications; we can identify the assets as well as their vulnerabilities. The second phase of that partnership involves a stronger combined go-to-market motion that's primarily driven by Siemens where they have a lot of engagement with the operators themselves.
Josh Hilton -- Berenberg -- Analyst
Okay. That's very helpful. And then maybe just more specifically on the go-to-market strategy. On a scale of 1 to 10, how ramp would you say your sales force is behind the new strategy?
Amit Yoran -- Chairman and Chief Executive Officer
We align our core sales team by no means OT experts. This entire category, Cyber Exposure, the complexity, the differentiation we bring to the market in terms of VM, selling to the CISO, I'd say, that's the primary focus and core capability that we're building our sales go-to-market motion around. It helps identify OT opportunities. We then have a limited number of focused experts that bring a much greater depth of OT experience and understanding to the table to assist them in those motions. We otherwise rely on partners like Siemens. They are more actively engaged with the OT side of the house as opposed to the IT in the CISO side of the house where our sales team has primary engagement.
Josh Hilton -- Berenberg -- Analyst
All right. Thank you very much.
Operator
Ladies and gentlemen, we have reached the end of the question-and-answer session. This concludes today's conference. You may disconnect your lines at this time. Thank you for your participation.
Duration: 53 minutes
Call participants:
Andrea DiMarco -- Vice President, Investor Relations and Strategy
Amit Yoran -- Chairman and Chief Executive Officer
Steve Vintz -- Chief Financial Officer
Melissa Franchi -- Morgan Stanley -- Analyst
Sterling Auty -- JPMorgan -- Analyst
Jonathan Ho -- William Blair -- Analyst
Gur Talpaz -- Stifel -- Analyst
Gray Powell -- Deutsche Bank -- Analyst
Daniel Ives -- Wedbush Securities -- Analyst
Josh Hilton -- Berenberg -- Analyst
Transcript powered by AlphaStreet
This article is a transcript of this conference call produced for The Motley Fool. While we strive for our Foolish Best, there may be errors, omissions, or inaccuracies in this transcript. As with all our articles, The Motley Fool does not assume any responsibility for your use of this content, and we strongly encourage you to do your own research, including listening to the call yourself and reading the company's SEC filings. Please see our Terms and Conditions for additional details, including our Obligatory Capitalized Disclaimers of Liability.
