Okta, Inc. ($OKTA)

This presentation contains forward-looking statements. We reserve the right to change the information in this presentation. More information can be found in our securities filings. Please welcome Okta's Chief Executive Officer and Co-Founder, Todd McKinnon.

It's great to see you all showcase. We're going to talk about our industry, and we're going to talk about our products. And in November, we introduced Okta for AI agents to the world. And it's our most important product ever, our most important product ever. It's simple on the surface. It's in the name. Okta connects your people to your technology, your customers to the technology they need to interact with your organization. And so it's Okta for AI agents. AI agents are the future exciting foundational technology and Okta for AI agents makes that connections for agents. And the response from all of you and the industry at large has been unlike anything I've seen in my career. It's the interest and the relevance of this product. And it's -- we've had hundreds and hundreds of meetings to talk about this product. It's been purchased by dozens of companies, and it's in production by several companies at this early date, getting real value securing and managing their AI agents, which is incredible uptake. And it's not surprising because if anyone that's paid attention to technology, we know that the future is agentic. The future is agentic. And there's different takes on this. And I think it's important to understand how we view this to put the broader context of what we're doing and frame it up for everyone. People talk about agentic as a new thing. It's a new layer. It's a new set of capabilities. I see it differently. I think it's the future of all of technology. By the way, all of -- not just enterprise technology, but all of technology. AI agents and autonomous behavior of technology is where the world is going. It's going to change how we seek and find information. It's going to change how products and services are delivered to customers. It's going to change how companies are getting productivity out of their workforces, how they're automating things, how they're getting insights, how they're fundamentally rethinking the core of what they do. And it's not like it's going to be delivered by one company or a set of companies. Everything is going to be agentic. Your existing vendors are going to overhaul their software to have autonomous agentic capabilities or they're going to be disrupted. Start-ups are going to have new agentic services and solutions. There's going to be existing categories change, categories are going to merge. There's going to be whole new categories of true digital workers. that are going to push existing vendors. You're going to build your own agentic systems. You're going to have -- create much better customer experiences. So it's a profound change. In fact, I think in 5 years or so, we're probably not going to refer to agentic technology. It's just going to be technology. So we're talking about the greatest transformation of technology in my career. I've been working professionally for 30 years now. So I've seen Internet, I've seen cloud, I've seen mobile. And this is by far the biggest change. It's changing at so many levels. It can be daunting and overwhelming, but it can also be very exciting. And the people gathered here today are the people at the forefront that have to make this all work. And hopefully, you share this excitement with us. With this new era of technology comes a lot of risk. It's not a surprise to security professionals and cyber professionals that there's a lot of trade-offs. There's risk and there's opportunities. And this is no exception. This kind of autonomy, the kind of access these agents get, the connections they make can lead to bad things. In fact, you're starting to see this pop up in the industry already. Anthropic released a very good report last fall, talking about a massive cyber attack that was perpetuated using the Anthropic models and Claude Code. And so this is a massive scale agentic system. automating work, automating software development, and it was used for a massive cyber campaign. And this report details what they found and some lessons learned about how to prevent it. And I think the biggest takeaway here is that these systems, while they're powerful, can be used for bad things. So we have to have a good concept of risk management and put the right controls and governance processes and controls in place to make sure it's secure. The threat actors in this case actually -- as you would expect, Anthropic has a ton of controls in their models and frameworks to make sure that they can't be used for bad things. And the attackers in this case, actually socially engineered the model. They socially engineered the model to trick it and say they were a respected threat research firm using this for research capabilities while they were really using it to actually prosecute this massive campaign. It wasn't -- it was using the normal tools and techniques available to the industry hooked up to the model. So they weren't using any novel times of -- novel types of zero days or types of tools to actually perpetuate the attacks. It was just the fact that it was all hooked up to the scalable agentic framework that was socially engineered that kind of made it all work. The other interesting thing about this is that throughout the process Anthropic -- and Anthropic published this, by the way, so we could all learn from it, and they could share with the industry some of these risks. But they also noticed that during the execution of this attack, the model was actually overly confident about the targets it was finding to try to attack if the attacks would work or not. So it was tricked, it was overconfident, all while under the guise of being massively scalable and massively controllable. So it's quite interesting. I suggest you take a read. There was another interesting survey by a small company called Gravity that did a great job surveying you all. Do you all participate in these surveys ever? Someone calls you up and get your professional opinion about IT. I see a lot of heads nodding. This was about 1,000 people, and it was VPs of IT, directors of technology, CPOs. And the survey asked them basically about how their agentic deployments were going. And they noticed a couple of interesting things. The first thing they noticed was that almost 9 out of 10 people said there was already a security issue in their agentic systems. So this could be something as simple as an agentic system was overprovisioned for access. It didn't have the right visibility and controls about what it could do, 9 out of 10, which is quite high. And then only 20%, roughly 20% treated these agents in their agentic system with complete identity control. So identity is a first-class thing for these agents. In the vast majority of cases, the agents were using reused API tokens, common access to systems that were shared across multiple agents. So there's no tracking and control and accountability for these agents when they were actually doing their work. So this is a problem for the industry. So I think what we need to do collectively and what Okta is focused on is making sure that as we all build this future, as we all build this future that we all know is powerful and profound, this future of agentic enterprise, we make sure that at the same time, we make it the secure agentic enterprise. It sounds simple, but we have to do both. We have to do both. This technology wave has a tremendous amount of potential. It's inspiring. It's exciting to all of us, but we have to make sure we put the right controls and foundational groundwork in place to make it secure as well. And if you think about the arc of Okta, Okta is 17 years old. And I feel personally and the company feels personally very blessed and very fortunate to be at the right place at the right time through multiple technology waves in those 17 years. Okta was born out of the cloud. The idea was cloud computing and the adoption of cloud for every layer in the IT stack would require a new kind of identity system. Everything was outside the firewall, you didn't control the servers and the resources. There are all these SaaS applications. You had to have the best identity ever created to secure and control that. And Okta's early success was really born on the back of the cloud adoption. We helped the cloud be adopted, and we were also benefited from it being adopted at scale. Then came the mobile revolution. Again, more devices, identity gets more important. Then there was COVID and work from home, identity gets more important. So through the arc of our history, identity gets more and more important in every technology wave. And this agentic enterprise, where every AI agent that is working with your employees and performing digital work, identity is more important than ever. So we are perfectly positioned. I mean who spent 17 years connecting people to technology. And now as we try to supplement those people with agents, who is perfectly positioned to do that. We couldn't be more fortunate, and we are not going to waste this opportunity. We're pouring all of our energy and effort and resources into making this agentic enterprise a secure agentic enterprise. And one of our fundamental things we're doing is we're working closely with all of you. All of our customers that are on the leading edge of this and that have taken this product, Okta for AI agents and are working with us to build out the next set of capabilities and features in a way that will most benefit you. There's -- what's the right way to put this? There's a lot of hype in AI. There's a lot of hype. And I think one of the key things we need to do is make sure that the product we build here is directly linked to the concrete value and the capabilities you need now. So we don't spend 4 years building a science experiment. We build something that you can use now. And we're very lucky here. We're very lucky. We know what problems you have and what solutions that we need to build for you. And they all kind of center around 3 really important questions. The first one sounds simple. What agents do I have? Every vendor I've ever talked to has agents. I want to build my own agents. Do vendors are saying they have agents and my people around my organization are adopting them. Where are they? Where do they come from? The second question is what can they connect to because that's the keys to the kingdom. Just like people, what resources they can connect to, customers come into your mobile app or website, what can they connect to? What your agents can connect to is absolutely critical. And the third thing is what can they do? So once they use that access, what can they actually do with it? So those are the key questions informed by our conversations with amazing customers around the world. And it's very confusing, especially some vendors propose to answer some of these questions. Some vendors say other questions are important. Some vendors say they have everything covered. And it's quite daunting. I think it was summarized nicely by a great customer of ours, S&P Global, Seth Fox is the CTO there. And I was sitting talking to Seth, and he said to me, he said, it's very -- there's a lot coming at us, Todd, and it's very overwhelming. So it's like what you need to do is just write down a reference architecture, like just summarize the landscape for us and tell me where you fit in, where the next vendor I'm going to see fits in. Compare what you're doing, what we have to what my friends company has, how does it all fit together? So that's what we've done, informed by hundreds and hundreds and hundreds of conversation along with work with our partners in the cyber ecosystem, partners in the application and technology ecosystem and most importantly, conversations with customers like you. We're excited about this blueprint for the secure agentic enterprise. It is what it says. It's a blueprint. It's not a product. It's not a -- this is an Okta thing, it's an industry thing. We're putting forward and saying, this is the reference architecture. This is how the ecosystem together could build not only the agentic enterprise, but the secure agentic enterprise. And it answers these core 3 questions. Where are my agents? What can they connect to? And what can they do? And you can see in this blueprint, the capabilities on how you detect agents are broken down in logical categories, everyone from integrations with agentic systems to edge browser-based detections to endpoint network. We all have gateways and all the gateway vendors are helping out here. And then how do you assess risk of those agents. It's all -- the capabilities are outlined in this blueprint. And then one thing about -- I talked about Okta being perfectly positioned to help be the backbone of the secure agentic enterprise because we've spent 17 years connecting people to technology, and we're very good at that. But we also know that agents are different. the protocols are different, how you build them is different, how they connect to things and how the interaction works. So that's all prescribed in the capabilities around what they can connect to. There's different capability. No person has ever logged into an MCP server, at least not that I know of. But agents do and agents also log into SaaS and how do you connect an agent to SaaS? Is it OAuth? Is it the API with a token? Is it -- how do you -- what is the catalog of things that are possible? What are the best practices? And how do you keep it secure? And then, of course, agents connect to agents, and that's a different set of protocols. And then you have legacy, you need to get these agents data from legacy systems and those legacy systems don't have OAuth, and they don't have these fancy rest APIs so that those are service accounts. And you have to vault credentials and it just orients the whole conversation in a way that makes sense of it all and lets us get to the business of making our -- not only our agentic enterprises, but our secure agentic enterprises. And finally, we talk about what can they do? This is about fine-grained permissions. And this is about do you do the enforcement at run time? Or is it agent set up? And then what's the life cycle of an agent? When is an agent created? And how do you manage it? How -- people simplistically say, oh, it's like a person. And other people say, oh, no, it's like just a privileged account and a service account, but the answer is it's somewhere in the middle and the blueprint tries to lay that out. When do you get a human involved and how do you track and log things? So these are the capabilities. And there's a ton of details behind this and the flows and how they work together. I don't mean to gloss over the complexity. If you've ever looked at a blueprint, you know that on the first couple of pages, it's very -- it's like the site and like what materials are going to be used and who the contractor is and how it's definitely going to go over budget. Not that I have any scarring about that. But then you flip through and it has other pages of all the details, the subsystems, the plumbing, the electrical, the foundation, the site details of the outside site plan. And it's the same thing true here. It's how these things fit together is prescribed in the blueprint because there is a lot of important capabilities here under the covers. Now this is a blueprint for the industry. And I don't purport to stand up here and say that Okta has a product that solves all of these things. It's definitely going to take a village to make this all work together. But the reason I started my comments by saying I thought that Okta for AI agents is our most important product ever. It's because the potential of the agentic enterprise is so profound. And this Okta for AI agents has such a core place in this ecosystem, has such a core capability. It's connecting your agents to all of your technology and controlling how they connect and what they can do. So it plays a very important role. And now to talk a little bit more about that in details and the detailed capabilities here for Okta for AI agents is my amazing colleague, Shannon Duffy. Please welcome Shannon.

Thanks, Todd. So Todd just showed our amazing blueprint for the secure agentic enterprise, but I could just show you some product. And I am so excited about Okta for AI agents. This is the first and best implementation of the blueprint, and customers are already using it to see amazing success. And we're going to show you how that blueprint helps you answer those 3 questions. Where are my agents? What can they connect to? And what can they do? As we like to say in cybersecurity, you can't protect what you can't see. So let's jump into the demo and take a look and answer that first question, where are my agents? Okay. So Okta helps you find agents in 2 ways, both the ones you know and the ones that you don't. Let's talk about the ones you know. So here we are in the Universal Directory, and this is your central system. This is your single source of truth. It's your agent inventory. And at Oktane, we showed you how you can register those AI agents. But we're taking it one step further. We're taking everything you love about the Okta Integration Network, the standards, the breadth, the flexibility, and we're extending it. We're essentially making it your agent integration network. Now the thing about these agents is they can't live in silos, right? They need to be connected to the tools you use every day. That's going to make them more valuable and more powerful. So here, you can browse the agent catalog, and you can see all of the tools that your company is using. And as your team starts working with new platforms, those are going to be here as well. The point is we are focusing on identity, so you can focus on innovating with technology and you never have to worry about vendor lock-in. All right. But what about the apps you've already configured for your human users? Well, you can go right from the app integration page, and you can see a new tab, AI agent import. And with Okta for AI agents, you can import those agents and all the metadata with one click. So you're going to get the name, the title, the description. And the important thing to remember here is identity is managed separately. So if an app gets compromised, security is going to be centralized, right in Okta. Okay. What about question number two? What about the agents you don't know about? Well, people in your company, I guarantee you, right now, as we sit here, People are spinning up agents in your company, and you need to know about them. So this is agent discovery. and agent discovery automatically flags OAuth grants. So when an agent is connected to an enterprise application, you are going to get notified. So you can see the scope and you can see the blast radius. But most importantly, you're going to get a remediation plan to take action. So you can go ahead, you can register the agent, assign a human owner and baseline security policies. Now the important thing to remember, this is not a onetime process. Discovery is running continuously in the background, so you can find all your agents, both the ones you know and the ones you don't. All right. So now you know where your agents are, let's answer that second question. What can they connect to? Well, it starts with MCP servers. So you can model agents, but you can also model MCP servers, and you can search a catalog of all the ones you might want to use. But connecting the agents to MCP servers directly, that can be risky, which is why we're introducing agent gateway. And the first use case is managing access to the virtual MCP servers so that you can select exactly which tools and scopes can be accessed. And with Okta for agents, you can securely secure those third-party coding agents like Cursor and Cloud Code. But what about everything else your agents need to integrate with? Well, today, we have 3 ways to manage those connections, Okta Authorization server, API keys and service accounts. But now we're adding 3 more ways to integrate agents securely, Okta Virtual MCP servers, third-party MCP servers and ODIC accounts, OIDC apps. No custom code and no direct path from agent to MCP servers and security is centralized in Okta. Okay. Question number three, what can they do? Well, you need to establish exactly what agents are accountable for and you have to cut off access if it goes wrong. So here's the governance dashboard. And you can see access on an ongoing basis to what these agents have access to down to the scope and tool level. And you can review their access to make sure they have access to everything they need, but nothing they don't. But if what if an agent goes rogue? Well, you need a kill switch. And with Okta for AI agents, you can trigger universal log out if an agent starts accessing things that shouldn't. It's automatically going to revoke the tokens and deactivate that agent access. So now you know what agents can do, but you can cut things off if something goes wrong. And as your agent footprint changes, you are always secure. We are evolving right there with you. Okay. So you just saw Okta for AI agents in action and how it helps you answer those 3 questions. Where are my agents? What can they connect to? And what can they do? These are just a few of the ways we are helping you become a secure agentic enterprise, and this is how Okta secures AI. Back to you, Todd.

Very cool. I love seeing that come together. Thank you all that have been involved in the early access of Okta for AI agents. As I said, it's really valuable to inform the product direction and help shape our view of the future based on substantive leading-edge conversations with real powerful organizations that are trying to build these agentic enterprises. And the team has made a ton of progress. And the most exciting thing at all -- the most exciting thing out of everything I'll talk about today is the fact that this product is going to be generally available to all of you on April 30. So that's amazing. You're all going to be able to get your hands on this. The world is going to be able to start going from agentic enterprises to secure agentic enterprises on April 30. So nice work, everyone that's worked with us on this and the teams at Okta that are building this together. So good job on that. Okay. So we've talked about the blueprint for the secure agentic enterprise. We've talked about Okta for AI agents. And now we're going to ground it in one of those real concrete conversations with an amazing company, an amazing leader at an amazing Okta customer. And this is a conversation with John Roese from Dell. John, come on up here.

So let's start. Put the -- I want to put Dell in the AI context. So how do you think about the industry, the Dell's place in the industry, how the industry is changing? How do you -- where does Dell fit into there?

Yes, we're fairly central because you cannot do AI with the infrastructure of the past. And so our business is building out the IT infrastructure of the world, compute, storage networking and all things associated with it. And that's been good for business. We're doing very well. We are finding ourselves in an entirely new world. However, just building infrastructure for someone else would be difficult because you wouldn't know what to build. And so a couple of years ago, we made the decision to be customer zero that we would be the early aggressive adopter of this technology. And I took over -- I've been the CTO for quite a long time, but I took over as the Chief AI Officer about 2 years ago. And in that 2-year period.

Was there another person? Or is it a new position?

There was a person there for a very brief period of time that attempted to build consensus and didn't work, and then we decided to go top down. We tried bottom up, didn't work. We went top down when I took over, which fundamentally launched our journey, which was if we're going to build for this new space, we sure better understand what this space is as a firsthand participant in it. We could spend a long time talking about our journey, but the punchline is after 2 years of a very disciplined -- if you go look at my YouTube channel and listen to me talk, you'll understand we are somewhat militant and we are very focused on doing this thing in a very structured way that actually gets to outcome, gets to ROI. But after 2 years of doing that, we just had our financial reports for the second year that we have done this more aggressive adoption of technology, but also changing our people and the process and redesigning our company for this era. Now we have 2 years in which something happened that hadn't happened in 41 years before that. And that was our revenue grew dramatically, first year, about $10 billion, second year, about $20 billion. And at the same time, our costs went down. We have never seen that happen. Every time revenue went up, costs went up with it. But when you redesign for the AI era, people, process, technology, funny enough, you decouple those 2 because the unit of work is no longer just a human being. It's an augmented human being or an agent. And that gives you tremendous leverage to grow your business and actually improve your cost structure at the same time. Doing that is nontrivial. It required us to lean in to be as bleeding edge in terms of thinking as possible, but also very pragmatic about making sure that we didn't break the business that we did things that matter. And so one interesting statistic is for all that progress, we never used a single agent yet. where we built our first autonomous agents almost 2 years ago, but the ones in production are pretty minimal right now. However, given the fact that we've had that kind of impact without agents, we are extremely excited about this greater shift to autonomy, the kind of projects we can go after. In fact, we believe that AI can only be applied to a process and the only processes we could go after with first-generation tools are very simple processes that are very much tied to human work behavior. When you move into the agentic world, you can go after the complex processes. You can go after composite processes, you can go after autonomous processes. And that opens up just a gigantic surface area that we're fairly comfortable is going to define productivity for the next -- probably the next decade at least.

When you think about the agentic technology stack, what are the key technologies? There's process, there's change management. There's strategic direction that has to be in line. And then there's the technology enablement. You mentioned a bunch of the stuff was done without even agentic. What are the key parts of the agentic?

Yes. You and I talked a while back, I think we -- I don't think we had published it yet, but at the end of last year, in October, we -- after working with these technologies and kind of thinking about what would we have to put in place to do this, we wrote it down, interesting enough. We have an internal set of agentic standards. And they're not high-level hand-waving stuff. They're very specific. And in fact, they included things like we decided all MCP servers would be centralized because at the time, MCP is just too risky to use without putting it in a safe space. That's a fairly straightforward decision. We now make that part of our architecture. We made decisions about having 2 kinds of agentic platforms, ones that we wholly own and operate, which we call inner ring, which are our control points and our ability to do things very specialized for Dell but then it would be surrounded by outer ring agentic platforms that existed within our partners and SaaS services, but we decided these would not be separate ships in the night. They would be part of one topology under one architecture. And probably the single biggest decision we made, which is what we were talking about, which I kind of shared with you guys and maybe gave you some encouragement to go on the journey you're on is that we decided that every agent in the world that does work on behalf of Dell would carry a digital identity issued and operated by us. I don't care if the agent is a third party. I don't care if it's in a SaaS provider. I want control. I authorize it to exist. And the reason I wanted to do that is because I know agents will track where work goes on and work goes on in more than just my data centers and my core businesses, but yet I want to be able to have control over how that work is happening. And what we realized is I can't control the underlying infrastructure decisions because those are third parties in many cases. I can't maybe even control the data APIs as well as I could. But if I control identity, I can do things like a kill switch. I can make an agent go away if it behaves badly, even if it isn't running on my infrastructure and fully under my control. And so that stack that has now formed, which is very much a modern AI factory underneath it to provide the engine to basically run it efficiently and scale it, what we call a knowledge layer, which are the knowledge graphs and the graph databases and the RAG systems that basically enumerate data that agents can use. And then on top of it, a control plane. And that control plane includes registries, but it fundamentally includes identity and access management and authorization. And so that stack now is real. It is published. In fact, just recently, we started to provide it as a pseudo RFI to all of our partners to say, okay, you want to do business with us. This is our set of rules. And to my knowledge, we're the first ones to do that. We think the industry ought to take blueprints and use blueprints because everybody agrees on kind of the meta architecture. we can actually all line on getting it built because it doesn't fully exist yet.

Yes, it sounds simple. I'm an identity guy. You guys early on made the decision that agents have to have first-class identities. We saw the survey I mentioned earlier that 22% of -- only 22% of companies are managing agents as real identity things. And it's good to hear that you're seeing success there, but it's a subtle thing a lot of people don't get to. They try to treat them as more like software and their scripts and their service accounts, and it's a very profound thing that we can make it happen together. So when you talk about agents, you guys decided to -- the primary -- the platform and the use cases, a lot of them are internal. How do you think about agents operating internally for your enterprise versus agents outside your enterprise accessing your systems and the internal, external trade-off there?

Yes. I would say our first thoughts about agents over a year ago, we had this belief that we could build one platform and kind of run all the agents on it. By the way, we have a bias. We really protect our intellectual property and our data. I am very hesitant to let black boxes of magic touch my data. So I like doing things that I can control, whether they're in my data centers or in systems that I help design the architecture for a provider. But the bottom line is we very quickly realize, as I said, agents track. They are an entity that does work, and that work can exist in many places. Some of that exists in things I fully control and some I don't. And so early on, we did pivot to have this 2 concentric ring model where there would be platforms that we fully controlled, and there would be platforms that we didn't control the platform, but we could control the agents on the platform. And that's where identity and access management became kind of this universal substrate. I think interestingly enough, I will tell you, just to give you some industry dirty laundry. We don't have full consensus in the industry about what even an agent is.

Stop, John. Stop. Breaking news.

Breaking news, agent washing, but it's even worse because some people believe agents are a feature of a model that's behind the black box of magic of the API, and you don't need to understand it. I completely disagree with that. We believe agents are software systems that can do autonomous work, and they do use large language models, but they also use knowledge graphs and other types of data expressions. They have a tool use interface today, primarily MCP. They have inter-agent communication with protocols like A2A. That is a system. And we're kind of -- the one thing we're struggling is we haven't quite got to consensus about which of those is the right answer? Is it a feature of a model? Or is it a software system that does work? I know where it's going to end up. I'm 100% confident the second is the right answer, but that creates tremendous confusion for people. It also makes it very difficult for me, interestingly enough, as I want to have ubiquitous identity and ubiquitous control, if you believe an agent is a black box of magic hidden behind a master account that is owned by a provider, it's very hard to reach into there and do authorization for what appears to be a knowledge graph that can I got to pull it out. And so we are generally treating most of those companies, and they are our partners in this extended ecosystem, and we're deprecating them. They are not agents to us. They are just tools and the intelligence and the reasoning will happen on our side until they expose that underlying capability. So it's -- I would say, most of the enterprise ecosystem. We have 650 start-ups we're working with building enterprise AI stuff. They have all largely gravitated towards these have to be composable systems. They're software entities. They work together. They have this kind of composable architecture. That's good. Some of the bigger providers haven't quite got there yet. And so we have to figure out how to work with it, which is why it's so important in your framework that you don't just assume everything is a first-class agent. Some agents might not actually be expressable as agents because they're behind the firewall or unexposed to you. So treat them like a tool and then control the tool use access, which is another authorization tech.

It all blends together.

Exactly. Yes.

So you're the CTO, so your job is to predict the future. So tell us what's going to happen.

Well, here's the first thing. We have something in Dell called the 2-year rule -- sorry, Todd, we treat all AI decisions of having no more than a 2-year lifespan. And the reason for that.

It's good for us, we have to work our a** off to keep maintain your business.

You have to work in your business. You win, you get us for 2 years, and then we reevaluate because honestly, we can't predict that future. But what I will tell you is the one thing that is absolutely certain, and you kind of mentioned it in your keynote, we are in a period where autonomy is becoming the actual characteristic of these systems. It's not the technology by itself is that the technology can operate autonomously. It will operate in low-grade autonomy like a better tool or it can operate in high-grade autonomy like a full-on digital expert worker. It is inevitable that, that is coming and is happening. And so the biggest shift that we can see is we have to prepare for that. We have to rethink work. We have to rethink our infrastructure. The other thing that's interesting and an infrastructure guy is years and years ago, it's like 6 years ago, I'm on the record of saying something along the lines of there will come a time where the.majority of your IT infrastructure is actually in service of AI outcomes. And more importantly, when that happens, you will have to redesign your IT architecture to treat AI as the primary workload, not the secondary. We are actually at that time right now. But I will tell you, the majority of the world's infrastructure was built before generative AI even existed. It was architected. We continue to apply architectural principles to it. So one of the biggest predictions is not only is this coming, but it is going to force a complete rethink of all the dimensionality of our IT environments, not just so that we can add a new capability, but so we can actually optimize the primary purpose of our infrastructures and IT systems to actually enable this autonomy. That is a big deal. If you read what I just said clearly, you're going to have to rethink everything. In fact, we encourage customers today that if you have an existing infrastructure and IT strategy, this is a very good time to pause because you probably made every decision in that list before generative AI ever happened. It's a great time to stop to get educated to rethink everything from identity to access control to telemetry to infrastructure choices to where the AI is run and where the data lives and what those data layers look like. That is probably a terrifying prediction because it means we have a lot of work to do, but it's also incredibly exciting because if we optimize for autonomy, this thing accelerates. And when it accelerates, I will guarantee you the result is dramatic impact on GDP, on lifespan, on health care, the amazing things that can happen if we get this right by doing it securely will happen quicker, and that's a very good thing for all of us.

Yes, very well said. I'm very excited. The way I think about it is there are 1.1 billion knowledge workers in the world. We spend about $30 trillion, and they produce about $65 trillion, $70 trillion of wealth. So how about we cut the cost by 10% and produce twice the wealth.

Exactly.

That would be a pretty amazing future for everyone. So thank you so much, John, for being a customer and trusting us with helping you build this -- using Okta for AI agents to build this identity layer in your platform and be the foundation for the Dell Secure Agent enterprise.

Yes. No, thanks for having us, and we're super excited to see this go GA. We've been on the journey with you to build it. And I think if you haven't looked at it and see what's going on here, this is a pretty important kind of very early real example of how to do this stuff. So congratulations.

All right. John, thanks. I think this blueprint is really going to clarify a lot of things and make it easier for all of us, whether you're building technology as a vendor, whether you're implementing technology as a company, whether you're a cyber -- member of the cyber ecosystem to rationalize how it all fits together and more importantly, help us all move forward more safely and more quickly. And I'll show up a QR code in a minute. You can get a link to all the details behind this. We're really excited to work with the whole ecosystem and community to build this and keep working on it going forward. And I think the big headline here is that Okta for AI agents is generally available on April 30. So if you're not using it already, make sure you reach out and learn about it and learn how it can help you build your secure agentic enterprise. And you can get all the information here. So we're very excited to help you secure AI. And again, thank you for being a customer. And if you're not a customer yet, I don't know what you're waiting for. We can take care of that. And thanks again to John for helping us out. And thanks again for Shannon and the whole product team and the marketing team for putting this on. And thank you very much, and enjoy the rest of the showcase.

Thank you for joining us today. Thank you for joining us today. Please join us in the foyer.