As state and local governments incorporate remote and hybrid work scenarios into their permanent plans for the workforce, they are taking a fresh look at cybersecurity. This includes the prevalence of malware and other attacks that target end users’ computing devices. To protect intellectual property, operational continuity and personally identifiable information (PII), and prevent downtime created by network intrusions, organizations should incorporate the following tactics into their device procurement strategies.