A Work Factor is an estimate of the effort or time needed by a potential adversary, with specified expertise and resources, to overcome a protective measure. Defense-in-Depth Cybersecurity programs seek to dramatically increase the work factor necessary to compromise a given entity.
Source: CNSSI 4009