What do you think are the most important factors to consider when picking an MFA solution?

Security & GRCIdentity & Access Management (IAM)Vendor/Product Assessment+1 more
142 views1 Upvote5 Comments
Director of IT in Healthcare and Biotech, 501 - 1,000 employees
Having been on both the end of using a company MFA and also putting in one:
* compatibility with existing solution(s)
* secure
* multiple device options for users, a few % will not have smartphones. 
* transparent vendor (esp. in relation to security issues)
* ease to use

Other considerations:
* SaaS based
* Part of greater SSO/directory solution
* ease of integration and troubleshooting
1
CIO, Self-employed
I would look for tools that are phishing resistant - MFA is frequently bypassed by session lengths that are too long. I would evaluate tools that are FIDO 2 aligned. 
1
Senior Information Security Manager in Software, 501 - 1,000 employees
Realize that, as Roger Grimes writes in ‘Hacking Multifactor Authentication’, that every MFA solution can be hacked. They are far from bulletproof. And it is critical that they be configured correctly.

https://amzn.to/46k5VGv

 
Global Head of AI, Data & Analytics in Software, 10,001+ employees
Session length, ease of use and unlikely for an accidental acceptance (not just a yes or no pop-up, put in a number)
Chief Information Security Officer in Healthcare and Biotech, 1,001 - 5,000 employees
1. Usability and User Experience
2. Integration Capabilities
3. Scalability and Flexibility
4. Management and Administration
5. Reliability and Availability
6. Cost and Total Cost of Ownership
7. Compliance and Industry Standards
8. Vendor Support and Reputation

Content you might like

Signal vs. Facebook/WhatsApp?  If forced to choose, which would you use?

Governance, Risk & ComplianceSecurity & GRCVendor/Product Recommendation

Signal63%

Facebook/WhatsApp37%


230 PARTICIPANTS
874 views1 Upvote

How likely is an organization to have misconfigured multi-factor authentication (MFA) settings?

NewsRussian Invasion of UkraineIdentity & Access Management (IAM)+2 more

Very likely6%

Likely42%

Somewhat likely25%

Somewhat unlikely14%

Unlikely9%

Very unlikely2%

Unsure0%


492 PARTICIPANTS
1.4k views1 Upvote1 Comment

If you had a magic wand - what's the #1 daily business challenge you'd eliminate?

People & LeadershipStrategy & ArchitectureCloud+57 more
CTO in Software, 201 - 500 employees
Without a doubt - Technical Debt! It's a ball and chain that creates an ever increasing drag on any organization, stifles innovation, and prevents transformation.
142 19 Replies
Read More Comments
41.4k views131 Upvotes319 Comments

Does the risk of Ransomware and malware propagation bother you? Is IoT security a top of mind for you? To protect against many risks, we have witnessed success of micro-segmentation in the data center. Would you be willing to deploy similar solution for the campus? I am very curious to get your feedback?

Security & GRCThreat & Vulnerability Management
Read More Comments
3k views5 Upvotes5 Comments

What's your initial reaction to Cisco acquiring Splunk?

Applications & PlatformsSecurity Strategy & RoadmapIT Strategy & Roadmap
1k views1 Upvote1 Comment