Rec. 2.a: The DoD OIG recommended that the [Redacted] enforce the use of multifactor authentication to access systems that process, store, and transmit ballistic missile defense system technical information, or obtain a waiver that exempts the networks from using multifactor authentication.