What do you think are the most important factors to consider when picking an MFA solution?

142 views1 Upvote5 Comments

Director of IT in Healthcare and Biotech, 501 - 1,000 employees
Having been on both the end of using a company MFA and also putting in one:
* compatibility with existing solution(s)
* secure
* multiple device options for users, a few % will not have smartphones. 
* transparent vendor (esp. in relation to security issues)
* ease to use

Other considerations:
* SaaS based
* Part of greater SSO/directory solution
* ease of integration and troubleshooting
CIO, Self-employed
I would look for tools that are phishing resistant - MFA is frequently bypassed by session lengths that are too long. I would evaluate tools that are FIDO 2 aligned. 
Senior Information Security Manager in Software, 501 - 1,000 employees
Realize that, as Roger Grimes writes in ‘Hacking Multifactor Authentication’, that every MFA solution can be hacked. They are far from bulletproof. And it is critical that they be configured correctly.


Global Head of AI, Data & Analytics in Software, 10,001+ employees
Session length, ease of use and unlikely for an accidental acceptance (not just a yes or no pop-up, put in a number)
Chief Information Security Officer in Healthcare and Biotech, 1,001 - 5,000 employees
1. Usability and User Experience
2. Integration Capabilities
3. Scalability and Flexibility
4. Management and Administration
5. Reliability and Availability
6. Cost and Total Cost of Ownership
7. Compliance and Industry Standards
8. Vendor Support and Reputation

Content you might like

Very likely6%


Somewhat likely25%

Somewhat unlikely14%


Very unlikely2%



1.4k views1 Upvote1 Comment

CTO in Software, 201 - 500 employees
Without a doubt - Technical Debt! It's a ball and chain that creates an ever increasing drag on any organization, stifles innovation, and prevents transformation.
Read More Comments
41.4k views131 Upvotes319 Comments