All of us at Onapsis are feeling the energy of a tremendous 2019 and ready to continue our hypergrowth in 2020, following an incredible global kickoff last week. 2019 was a momentous year for Onapsis, not only because we celebrated our ten year anniversary, but also because we achieved record business results.
As we welcome the new decade, I’d like to take some time to recognize how far Onapsis has come in our first ten years in business, recap our record progress in 2019 and welcome the newest member to the Onapsis team: Dave DeWalt.
To expand our board of directors with the caliber that Dave uniquely brings is an incredible moment for Onapsis. He’s a world-class leader and his powerful blend of experience and skills will help take Onapsis to the next level of growth as we help our customers protect their business applications with confidence. Dave is the second outstanding addition to the Onapsis board of directors in the past year, with former Google CISO Gerhard Eschelbeck joining the board in May.
Much like Gerhard, Dave brings a unique perspective to Onapsis. Having served as an investor, advisor and executive over his impressive 30+ year career, including being the CEO at McAfee and FireEye, Dave knows what it takes to scale high-growth companies from startups to the Fortune 500. Today, he serves as the CEO of NightDragon Security. He also sits on the board of some of the most innovative companies in the world, including Delta Airlines, Five9, ForeScout, iboss, Cybereason, CallSign, Claroty, Team8, DataTribe, Illusive Networks and Optiv.
I first met Dave a few months ago, introduced by a mutual friend. He had been following our growth and had seen, first hand, how huge the market opportunity we had in front of us was. “In the next few years, as organizations shift critical applications to the cloud, businesses will require the proper technology to ensure integrity, compliance and cybersecurity. Onapsis is strategically positioned to lead this transformation through its unique software platform and services, " reflected Dave. I am honored to have him join us on our journey and help us further accelerate growth at scale.
Protecting organizations’ sensitive information has been our goal regardless of deployment model for the past ten years. In fact, Onapsis has worked tirelessly to establish itself as a leader in business-critical application security, discovering and helping mitigate more than 800 zero-day vulnerabilities in SAP and Oracle applications.
In 2019 we exemplified this vision with the discovery and mitigation of two major vulnerabilities: Oracle PAYDAY and 10KBLAZE. Oracle PAYDAY is a critical Oracle EBS vulnerability that could allow hackers to gain untraceable control of electronic fund transfers and print malicious bank checks without detection for up to 21,000 companies worldwide. 10KBLAZE, on the other hand, was a critical SAP exploit that can lead to a full compromise of vulnerable SAP systems at over 50,000 companies across the globe.
Beyond 10KBLAZE, we continue to focus on supporting the global SAP and Oracle communities. In 2019 the Onapsis Research Labs discovered and helped mitigate 66% of Oracle E-Business Suite’s critical zero-day vulnerabilities. To date, we’ve discovered and helped SAP fix more than 60% of the published SAP HANA security patches.
On the corporate side, Onapsis realized hypergrowth again last year, highlighted by 157% annual recurring revenue growth, 257% expansion annual recurring revenue growth and strong retention rates of 90% across Onapsis’s global customer base.
Today, Onapsis’s customer base totals more than 300 global enterprises. The list includes 20% of the Fortune 100, six of the top 10 automotive companies, five of the top 10 chemical companies, four of the top 10 technology companies and three of the top 10 oil and gas companies.
As we look into the future, we strive to provide the highest level of customer service, security and support to these companies and continue to foster relationships with additional organizations who require compliance, visibility and protection for all their business-critical applications.
Last week, at global kickoff, all 300+ “Onas” made a commitment: we would make 2020 EPIC. Here we go.