Defender and FORCED Two-Step Verification

I'd like the ability to force users to do two step verification in Defender. Right now the individual user has to choose it as an option. As the person who runs the network I am more freaked out about security than users -- they want it as easy as possible to login -- as the guy who has to fix it if/when it gets hacked I'd rather force everyone to have hard passwords and two step verification. Hope you will change this asap.