State and local governments, municipalities, city councils, local law enforcement agencies, federal government agencies, critical infrastructure, and other government entities – collectively the government sector – are under attack from cyber criminals, insider threats, and nation-states. Threats from ransomware, business email compromise, phishing and other security threats are relentless, and 2019 has been a banner year for various types of attacks against government enterprises. This white paper explores the current state of security threats in the government sector today and offers direction for government decision makers and influencers wanting to increase the effectiveness of their security capabilities.