Topic: Guidance conservatism and systems growth drivers
Key points:
FY2026 guidance set at 0%–4% growth (vs. mid-single-digit trajectory) due to potential near-term security incident impact, majority expected in H1 with normalization in H2.
Three categories of disruption: (1) field/sales resources diverted to customer remediation; (2) potential delays in deal approvals; (3) possible project cancellations. >70% of revenue is recurring, so impact mainly on new projects/footprint.
FY2025 systems business: ~2/3 from tech refresh, ~1/3 from data center capacity expansion (AI-driven); >50% of installed base still on legacy product families.
Mgmt stance: Neutral – prudent guidance reflecting early-stage uncertainty; no actual impact observed yet, but conservatism warranted given disclosure timing.
Q2 — George Notter
Topic: Security breach impact sizing and customer exposure
Key points:
Revenue profiling: maintenance (deferred revenue), SaaS (beginning ARR), software subscriptions (renewals) are highly resilient; newer use cases (competitive takeout, new software projects) more exposed.
Impact assessment used granular revenue cohort analysis, peer historical comparisons, and early sales team feedback; early customer conversations described as "very healthy."
Only BIG-IP customers impacted (no evidence of access to Distributed Cloud Services or NGINX). Data exfiltration affected a "small percentage" of customers; most common feedback is that exfiltrated data is not sensitive.
Mgmt stance: Neutral/cautious – no near-term impact seen yet, but proactive sizing of potential disruption; customer relationships remain positive.
Q3 — Michael Ng
Topic: OpEx growth and breach-related costs
Key points:
Implied FY2026 OpEx growth ~4% at midpoint; cybersecurity investment more than doubled over last 3 years, with continued investment planned (including incremental post-incident).
BIG-IP is highest revenue product but no specific revenue percentage disclosed (single-segment company).
Costs for incident remediation and Falcon EDR subscription offering will be covered by cyber insurance or accounted as onetime remediation expenses.
Topic: Systems and software revenue growth drivers
Key points:
Systems revenue: FY2025 saw catch-up from FY2024 low watermark ($130M–$140M/quarter to ~$180M/quarter); still early in refresh cycle (>50% installed base on legacy), plus new AI-driven data center capacity expansion (non-cyclical, multiyear potential).
Software growth catalysts: multiyear software agreements grew 20% YoY; SaaS customers grew 57% to >1,300; 26% of top 1,000 customers now consume Distributed Cloud; customers using multiple product families rose from 30% to 70% over 4 years.
Near-term security incident may temper growth, but underlying mid-single-digit trajectory remains.
Mgmt stance: Bullish – strong structural drivers (refresh cycle, AI capacity, SaaS adoption, cross-sell) support continued growth; near-term incident impact is temporary.
Q5 — Timothy Long
Topic: Distributed Cloud Services economics and vertical performance
Key points:
DCS land-and-expand motion: 1/3 of customers have expanded ARR, with expansion averaging 90% for those customers; deals start small and grow as more BIG-IP services are added to the platform.
Enterprise verticals (financial services, healthcare, manufacturing, retail, public sector) embracing hybrid multicloud drive cross-sell; service provider segment tepid due to lack of 5G adoption/ARPU growth.
No specific vertical bookings data provided; enterprise described as "really strong," service provider as "pretty weak."
Mgmt stance: Bullish on enterprise/hybrid multicloud; neutral/cautious on service providers (stable but no growth catalyst).
Q&A Batch (6-9 of 9)
Q6 — Simon Leopold
Topic: US federal disruption from government shutdown & FY26 revenue mix guidance
Key points:
Guidance assumes "some level of disruption" in US federal segment in Q1 due to shutdown; projects delayed or approvals delayed.
Hope is for normalization over the year, but Q1 federal numbers assumed below historical levels.
FY26 revenue growth guidance is 0% to 4%; management declined to guide software vs. hardware mix, citing only 12 days since the incident.
Breach affects BIG-IP (both hardware and software versions) equally, per François Locoh-Donou.
Mgmt stance: Neutral to cautious near-term (federal disruption baked in, mix guidance withheld due to short post-incident period).
François cannot know if 1-2 quarter disruption changes market share; expects to continue gaining share in app delivery and security market.
Rationale: F5 invests more in roadmap, security, trust centers, penetration testing, and code scanning; customer relationships expected to strengthen over time.
Standalone security revenue: FY25 $463M, relatively flat vs. FY24 $458M and prior year $475M; overall security business grew ~6% last year.
Growth shift toward platform consumption (flexible consumption program) and SaaS transition impact on standalone security.
Mgmt stance: Bullish on long-term market position (expects share gains despite short-term blip); neutral on standalone security growth (mix shift to platform drags on standalone).
FY26 operating margin implied at ~34%; Q2 is the "low watermark" due to payroll tax resets and March customer event; back-half leverage expected.
No specific Q2 OpEx guidance given, but seasonality can indicate typical uptick.
Breach response: setting up trust center for customer penetration testing, using AI for code scanning, enhancing bug bounty program, working with CrowdStrike for EDR on BIG-IP (first in industry for perimeter devices).
Price increase approach unchanged; management believes value from investments (CalypsoAI acquisition for AI app security, hybrid multicloud platform) justifies pricing.
Mgmt stance: Neutral on margin (seasonal dip, then recovery); bullish on customer confidence and pricing (proactive security measures, no plan to change policy).