This report provides an overview of how some state and local government agencies are adapting to this threat landscape by adding Duo’s multi-factor authentication (MFA) into their security architecture. The information provided is based on interviews with IT department decision-makers and administrators who are in charge of cybersecurity for their respective agencies.