Caught in a bind where my supervisor dismisses multi-factor auth as too slow

What's a tactful way to highlight the risks without sounding like I'm undermining the supervisor's authority?

3 comments

3 Comments

Yeah, when your boss calls MFA too slow, that's a real facepalm moment. It's like complaining that locking your door takes extra time while leaving it wide open for thieves. Sure, it adds a few seconds, but skipping it is basically inviting hackers to a free lunch with your data. One weak password and your whole company could be dealing with a massive breach, which is way slower and more painful. Honestly, the short delay is nothing compared to the months of cleanup after an attack. Maybe point out that the real speed bump would be explaining a security disaster to everyone.

xena_thompson711mo ago

Ugh, @cameronb97 is right, but everyone forgets how much time gets wasted resetting compromised accounts after a hack. Those helpdesk tickets and password changes for the whole office take way longer than daily MFA. So skipping it actually creates more slowdowns in the long run.

zarapalmer20d ago

Actually, MFA doesn't always mean a few seconds. Push notifications on a phone app are often just a single tap, faster than typing a password. The real slowdown is when companies use clunky SMS codes or hardware tokens.