Need help with below question

More than half of companies around the world use MFA. For companies that have not implemented MFA, reasons cited include cost, IT effort, and problems with deployments leading to user “friction.”
Some organizations deploy MFA only to executives because they have full access to sensitive information. Yet other organizations secure only some applications with MFA rather than all apps.
Questions:
Do you agree that deploying MFA only to executives is a secure approach to access management? Why or why not?
Do you agree that requiring MFA for only some applications, regardless of user type, is a secure approach to access management? Why or why not?
Requirement: Assignment of 350 words in length. Two replies of 150 words in length on same topic. Provide valid rationale or a citation for your choices.