{"id":7243,"date":"2022-06-29T14:47:01","date_gmt":"2022-06-29T21:47:01","guid":{"rendered":"https:\/\/www.strata.io\/?p=7243"},"modified":"2023-09-28T22:00:15","modified_gmt":"2023-09-29T05:00:15","slug":"hexa-policy-orchestration-framework","status":"publish","type":"post","link":"https:\/\/www.strata.io\/blog\/governance-standards\/hexa-policy-orchestration-framework\/","title":{"rendered":"Hexa Policy Orchestration framework: Simplifying IAM policy for multi-cloud ecosystems (by Tom Malta)"},"content":{"rendered":"<div class=\"wpb-content-wrapper\"><p>[vc_row][vc_column][vc_single_image image=&#8221;7246&#8243; img_size=&#8221;full&#8221;][vc_column_text]<i><span style=\"font-weight: 400;\">In this guest post, IAM expert and global consultant Tom Malta shares his views on how <\/span><\/i><a href=\"https:\/\/www.strata.io\/resources\/blog\/policy-orchestration\/idql-hexa-new-identity-standard-policy-orchestration\/\"><i><span style=\"font-weight: 400;\">Hexa and IDQL<\/span><\/i><\/a><i><span style=\"font-weight: 400;\"> \u2013 a new and unique policy orchestration platform \u2013\u00a0 are set to disrupt the multi-cloud space.<\/span><\/i><span style=\"font-weight: 400;\">\u00a0<\/span><\/p>\n<p><span style=\"font-weight: 400;\">Using multiple cloud platforms delivers significant benefits to enterprises, such as improved redundancy, availability, and security. As a result, the multi-cloud approach has been steadily winning over more and more C-level decision-makers.\u00a0\u00a0<\/span><\/p>\n<p><span style=\"font-weight: 400;\">However, with such transformative changes, many IT leaders have found <\/span><a href=\"https:\/\/www.strata.io\/resources\/blog\/multi-cloud-identity\/state-of-multi-cloud-identity-report-2022-top-iam-challenges\/\"><span style=\"font-weight: 400;\">complex cloud-related challenges<\/span><\/a><span style=\"font-weight: 400;\"> that can impact business operations when expanding their suite of cloud service providers (CSPs). Outdated and manual systems for identity and access management (IAM) are consistently at the core of the problem.\u00a0<\/span><\/p>\n<p><span style=\"font-weight: 400;\">Thankfully, there\u2019s a new solution that I\u2019m confident will help enterprises easily and consistently orchestrate policies across the multi-cloud. As I recently expressed to industry leaders regarding their IAM strategic plans:<\/span><\/p>\n<p><i><span style=\"font-weight: 400;\">Any company struggling with managing identity and access across multi-cloud will benefit from Hexa and IDQL. For the first time, you can unify and centrally manage your policies north\/south, but also east\/west across any cloud service provider (CSP), or virtually any end-point in your solution architecture.<\/span><\/i><\/p>\n<h2><span style=\"font-weight: 400;\">A new era: the business case for early multi-cloud adoption\u00a0<\/span><\/h2>\n<p><span style=\"font-weight: 400;\">Having worked in the IAM space for over two decades, I\u2019ve had the opportunity to be part of multiple migrations to the cloud (and then multi-cloud) and have gained many insights along the way. In recent years, as a consultant, I\u2019ve advised many IT leaders about how to avoid pain points they may encounter when transitioning to multi-cloud, including:<\/span><\/p>\n<ul>\n<li style=\"font-weight: 400;\" aria-level=\"1\"><b>Complicated and disparate identity systems<\/b><span style=\"font-weight: 400;\">. A whopping 40,000+ authentication and authorization patterns across the big three CSPs alone. Cloud deployments may become brittle in such vast environments.\u00a0<\/span><\/li>\n<li style=\"font-weight: 400;\" aria-level=\"1\"><b>Risk of sub-optimum outcomes.<\/b><span style=\"font-weight: 400;\"> Whether a failed deployment in the backend or inconsistent run-time behavior that adversely impacts end-users, these are real and costly risks to businesses.\u00a0<\/span><\/li>\n<li style=\"font-weight: 400;\" aria-level=\"1\"><b>Lack of standardization across clouds<\/b><span style=\"font-weight: 400;\">.\u00a0 Without standards, fragmentation and complexity often mean enterprises need separate support and development teams as well as numerous CI\/CD deployment models. Authorization is not easily understood nor controlled, which increases risk and requires constant tweaking to ensure it\u2019s right.\u00a0<\/span><\/li>\n<li style=\"font-weight: 400;\" aria-level=\"1\"><b>Vendor lock-in. <\/b><span style=\"font-weight: 400;\">Contractual constraints associated with proprietary software are a common challenge that compounds complexity, increases costs, and limits flexibility.\u00a0<\/span><\/li>\n<\/ul>\n<p><span style=\"font-weight: 400;\">These types of challenges also arose frequently in a previous role I held while navigating multiple cloud deployments in an Azure environment. My team\u2019s experiences demonstrate the magnitude of our problems while seeking solutions to these challenges.\u00a0<\/span><\/p>\n<p><span style=\"font-weight: 400;\">Let\u2019s take a brief look at how we tackled the problem.\u00a0<\/span><\/p>\n<h2><span style=\"font-weight: 400;\">Case study: from cloud to multi-cloud before automation<\/span><\/h2>\n<p><span style=\"font-weight: 400;\">At the time, a brief outage had just impacted authentication via Microsoft, and the risks of exclusive reliance on a single CSP were of growing concern to our leadership team.\u00a0<\/span><\/p>\n<p><span style=\"font-weight: 400;\">I recommended adopting AWS as an alternate CSP to increase our readiness to migrate critical customer workloads in the event of a similar outage. But we found ourselves in uncharted territory with significant unknowns, including how to: approach a move to an alternate primary IdP, establish a baseline for services and deployments, preserve consistent, seamless services, and ensure the solution was readily deployable.\u00a0<\/span><\/p>\n<p><span style=\"font-weight: 400;\">Manually implementing changing permissions updates and policies was already a struggle. Finding skilled workers that understood the myriad of possible scenarios in a multi-cloud ecosystem was tricky, given the global shortage of cyber talent.\u00a0<\/span><\/p>\n<p><span style=\"font-weight: 400;\">We needed to engage developers and architects from the proposed alternate CSP. Quality assurance checks and pre-PROD validations were required to benchmark workloads under each CSP to ensure alignment of policies and permissions.\u00a0<\/span><\/p>\n<p><span style=\"font-weight: 400;\">At the time, no viable solutions were on the horizon. Even today, many C-level executives report the same pain points using this outdated (and costly) approach. The process is resource-intensive for testing, individual deployment, and ongoing policy management.<\/span><\/p>\n<p><b>Related reading: <\/b><a href=\"https:\/\/www.strata.io\/resources\/media\/press-release-2022-state-of-multi-cloud-identity-report\/\"><b>State of Multi-Cloud Identity Report 2022\u00a0<\/b><\/a><\/p>\n<h3><span style=\"font-weight: 400;\">Why standards make a difference<\/span><\/h3>\n<p><span style=\"font-weight: 400;\">Ultimately, the friction can be traced back to the absence of standardization across the various CSPs and their associated policies and permissions. With no standardization today, there is also no easy way to leverage multi-cloud to its full capability using a manual process.<\/span><\/p>\n<p><span style=\"font-weight: 400;\">During consultations with senior leaders, I\u2019ve discovered common needs, expectations, and priorities, including:<\/span><\/p>\n<ul>\n<li style=\"font-weight: 400;\" aria-level=\"1\"><b>Consistency<\/b><span style=\"font-weight: 400;\"> \u2013 how to baseline permissions and authorizations across CSPs to ensure uniformity.<\/span><\/li>\n<li style=\"font-weight: 400;\" aria-level=\"1\"><b>Flexibility<\/b><span style=\"font-weight: 400;\"> \u2013 CTOs and CIOs want greater flexibility, not custom policy development and multiple CI\/CD deployments per CSP.\u00a0\u00a0<\/span><\/li>\n<li style=\"font-weight: 400;\" aria-level=\"1\"><b>Value<\/b><span style=\"font-weight: 400;\"> \u2013 transitioning to micro-service-based architectures with exposed APIs requires individual CSP configurations that are costly, time-consuming, and misaligned.\u00a0<\/span><\/li>\n<\/ul>\n<p><span style=\"font-weight: 400;\">The bottom line is that the days of going all-in on one CSP are a relic of the past. To simplify the adoption of multi-cloud, we need <\/span><a href=\"https:\/\/www.strata.io\/resources\/blog\/policy-orchestration\/how-to-go-from-zero-to-a-standard-building-idql-hexa\/\"><span style=\"font-weight: 400;\">a new approach to enable customers to modernize their infrastructure<\/span><\/a><span style=\"font-weight: 400;\"> without increased cost, complexity, and risk.\u00a0<\/span><\/p>\n<h2><span style=\"font-weight: 400;\">IDQL &amp; Hexa: developing a new approach to modernize IAM<\/span><\/h2>\n<p><span style=\"font-weight: 400;\">Enter IDQL &amp; Hexa. IDQL, a new declarative identity policy language, and its open-source reference software, <a href=\"https:\/\/www.cncf.io\/projects\/hexa\/\" target=\"_blank\" rel=\"noopener\">Hexa \u2014 an active CNCF Sandbox project<\/a>, enable you to centrally manage disparate access policies in a common format instead of the bespoke policy syntaxes associated with each CSP.\u00a0<\/span><\/p>\n<p><span style=\"font-weight: 400;\">Hexa discovers all your policies and translates them to and from IDQL. Then, it orchestrates those policies back to each native cloud service in its imperative format.<\/span><\/p>\n<p><span style=\"font-weight: 400;\">Together, IDQL and Hexa solve many common IAM issues in multi-cloud ecosystems:<\/span><\/p>\n<ol>\n<li style=\"font-weight: 400;\" aria-level=\"1\"><b>Eliminates custom coding<\/b><span style=\"font-weight: 400;\"> \u2013 <\/span><a href=\"https:\/\/hexaorchestration.org\/\"><span style=\"font-weight: 400;\">Policy discovery, translation, and orchestration<\/span><\/a><span style=\"font-weight: 400;\"> back to any CSP or end-point in your solution architecture.<\/span><\/li>\n<li style=\"font-weight: 400;\" aria-level=\"1\"><b>Avoids vendor lock-in<\/b><span style=\"font-weight: 400;\"> \u2013 No agents nor proxies are involved. Hexa is purpose-built for the cloud. It runs natively and with your existing containerized deployments and CI\/CD processes.<\/span><\/li>\n<li style=\"font-weight: 400;\" aria-level=\"1\"><b>Enables transparent policy governance<\/b><span style=\"font-weight: 400;\"> \u2013 Hexa relies on centralized management of policies using declarative IDQL \u2013 one place to manage all CSP policies and one open-source standard to centralize all your multi-cloud needs.<\/span><\/li>\n<li style=\"font-weight: 400;\" aria-level=\"1\"><b>Increases flexibility<\/b><span style=\"font-weight: 400;\"> \u2013 Orchestrate policies. Hexa is a hub going to and from your bespoke cloud deployments or any endpoint in your architecture.<\/span><\/li>\n<li style=\"font-weight: 400;\" aria-level=\"1\"><b>Supports scalability without increased costs<\/b><span style=\"font-weight: 400;\"> \u2013 Hexa facilitates widespread adoption and community development. It allows the opportunity to co-source and co-develop service-specific or broad business use cases and patterns.<\/span><\/li>\n<\/ol>\n<h2><span style=\"font-weight: 400;\">Hexa &amp; IDQL: simplify policy orchestration for multi-cloud\u00a0<\/span><\/h2>\n<p><span style=\"font-weight: 400;\">Supporting multi-cloud can be due to business needs changing or current CSPs not meeting expectations. Or perhaps other drivers like regulatory or geographical constraints have pushed you to use multiple clouds.\u00a0<\/span><\/p>\n<p><span style=\"font-weight: 400;\">Whatever the reason, it\u2019s becoming increasingly difficult to solve the vast array of challenges that come with a fruit salad of CSPs, more commonly dubbed by me as the \u201capples, oranges, and bananas\u201d problem.\u00a0<\/span><\/p>\n<p><span style=\"font-weight: 400;\">Rare are new approaches that truly disrupt the status quo in IAM (identity and access management). Yet, that is what IDQL\/Hexa together are capable of achieving. Being born in the cloud as open-source (with no proxies or agents) and further supported by standards and industry consortiums like the <\/span><a href=\"https:\/\/www.cncf.io\/\"><span style=\"font-weight: 400;\">CNCF<\/span><\/a><span style=\"font-weight: 400;\">, I expect widespread adoption similar to Kubernetes, Docker, or even going back to the early days of SAML.<\/span><\/p>\n<p><span style=\"font-weight: 400;\">It\u2019s time to simplify what\u2019s on your plate with the <\/span><b>unique benefits and opportunities of Hexa with IDQL:\u00a0<\/b><\/p>\n<ul>\n<li style=\"font-weight: 400;\" aria-level=\"1\"><span style=\"font-weight: 400;\">Declarative and simple to understand, in human-readable format, no agents nor proxies to deploy at runtime.<\/span><\/li>\n<li style=\"font-weight: 400;\" aria-level=\"1\"><span style=\"font-weight: 400;\">One policy management tool reduces support, recruitment, and training costs.<\/span><\/li>\n<li style=\"font-weight: 400;\" aria-level=\"1\"><span style=\"font-weight: 400;\">Simplified CI\/CD process with the capability to orchestrate and deploy to all endpoints simultaneously.\u00a0\u00a0\u00a0<\/span><\/li>\n<\/ul>\n<p><span style=\"font-weight: 400;\">To discover more about this solution for your multi-cloud challenges. \u200b\u200b<\/span><b>Join the IDQL\/Hexa working group<\/b><a href=\"https:\/\/hexaorchestration.org\/\"> <span style=\"font-weight: 400;\">https:\/\/hexaorchestration.org\/<\/span><\/a><span style=\"font-weight: 400;\">.\u00a0<\/span>[\/vc_column_text][\/vc_column][\/vc_row][vc_row][vc_column][\/vc_column][\/vc_row]<\/p>\n<\/div>","protected":false},"excerpt":{"rendered":"[vc_row][vc_column][vc_single_image image=&#8221;7246&#8243; img_size=&#8221;full&#8221;][vc_column_text]In this guest post, IAM expert and global consultant Tom Malta shares his views on how Hexa and IDQL \u2013 a new and unique policy orchestration platform \u2013\u00a0 are set to disrupt the multi-cloud space.\u00a0 Using multiple cloud platforms delivers significant benefits to enterprises, such as improved redundancy, availability, and security. As a&#8230;","protected":false},"author":9,"featured_media":7265,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"content-type":"","inline_featured_image":false,"footnotes":""},"categories":[101],"tags":[],"hashtags":[],"acf":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO Premium plugin v22.5 (Yoast SEO v22.5) - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>IDQL\/Hexa Policy Orchestration Framework (Tom Malta) - Strata.io<\/title>\n<meta name=\"description\" content=\"Tom Malta, global Identity Management expert, shares how the IDQL and Hexa Policy Orchestration framework can solve today&#039;s IAM challenges.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.strata.io\/blog\/governance-standards\/hexa-policy-orchestration-framework\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Hexa Policy Orchestration framework: Simplifying IAM policy for multi-cloud ecosystems (by Tom Malta)\" \/>\n<meta property=\"og:description\" content=\"Tom Malta, global Identity Management expert, shares how the IDQL and Hexa Policy Orchestration framework can solve today&#039;s IAM challenges.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.strata.io\/blog\/governance-standards\/hexa-policy-orchestration-framework\/\" \/>\n<meta property=\"og:site_name\" content=\"Strata.io\" \/>\n<meta property=\"article:published_time\" content=\"2022-06-29T21:47:01+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2023-09-29T05:00:15+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.strata.io\/wp-content\/uploads\/2022\/06\/Hexa-Tom-Malta-Guest-Post-665-\u00d7-454-px.png\" \/>\n\t<meta property=\"og:image:width\" content=\"665\" \/>\n\t<meta property=\"og:image:height\" content=\"454\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/png\" \/>\n<meta name=\"author\" content=\"Heidi King\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"TechArticle\",\"@id\":\"https:\/\/www.strata.io\/blog\/governance-standards\/hexa-policy-orchestration-framework\/#article\",\"isPartOf\":{\"@id\":\"https:\/\/www.strata.io\/blog\/governance-standards\/hexa-policy-orchestration-framework\/\"},\"author\":{\"name\":\"Heidi King\",\"@id\":\"https:\/\/www.strata.io\/#\/schema\/person\/49fd745b8135ac9ad7f046e93664574a\"},\"headline\":\"Hexa Policy Orchestration framework: Simplifying IAM policy for multi-cloud ecosystems (by Tom Malta)\",\"datePublished\":\"2022-06-29T21:47:01+00:00\",\"dateModified\":\"2023-09-29T05:00:15+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/www.strata.io\/blog\/governance-standards\/hexa-policy-orchestration-framework\/\"},\"wordCount\":1281,\"commentCount\":0,\"publisher\":{\"@id\":\"https:\/\/www.strata.io\/#organization\"},\"image\":{\"@id\":\"https:\/\/www.strata.io\/blog\/governance-standards\/hexa-policy-orchestration-framework\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/www.strata.io\/wp-content\/uploads\/2022\/06\/Hexa-Tom-Malta-Guest-Post-665-\u00d7-454-px.png\",\"articleSection\":[\"Governance &amp; Standards\"],\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\/\/www.strata.io\/blog\/governance-standards\/hexa-policy-orchestration-framework\/#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.strata.io\/blog\/governance-standards\/hexa-policy-orchestration-framework\/\",\"url\":\"https:\/\/www.strata.io\/blog\/governance-standards\/hexa-policy-orchestration-framework\/\",\"name\":\"IDQL\/Hexa Policy Orchestration Framework (Tom Malta) - Strata.io\",\"isPartOf\":{\"@id\":\"https:\/\/www.strata.io\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/www.strata.io\/blog\/governance-standards\/hexa-policy-orchestration-framework\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/www.strata.io\/blog\/governance-standards\/hexa-policy-orchestration-framework\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/www.strata.io\/wp-content\/uploads\/2022\/06\/Hexa-Tom-Malta-Guest-Post-665-\u00d7-454-px.png\",\"datePublished\":\"2022-06-29T21:47:01+00:00\",\"dateModified\":\"2023-09-29T05:00:15+00:00\",\"description\":\"Tom Malta, global Identity Management expert, shares how the IDQL and Hexa Policy Orchestration framework can solve today's IAM challenges.\",\"breadcrumb\":{\"@id\":\"https:\/\/www.strata.io\/blog\/governance-standards\/hexa-policy-orchestration-framework\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/www.strata.io\/blog\/governance-standards\/hexa-policy-orchestration-framework\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.strata.io\/blog\/governance-standards\/hexa-policy-orchestration-framework\/#primaryimage\",\"url\":\"https:\/\/www.strata.io\/wp-content\/uploads\/2022\/06\/Hexa-Tom-Malta-Guest-Post-665-\u00d7-454-px.png\",\"contentUrl\":\"https:\/\/www.strata.io\/wp-content\/uploads\/2022\/06\/Hexa-Tom-Malta-Guest-Post-665-\u00d7-454-px.png\",\"width\":665,\"height\":454,\"caption\":\"Hexa logo | image of Tom Malta | IDQL logo\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/www.strata.io\/blog\/governance-standards\/hexa-policy-orchestration-framework\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Blog\",\"item\":\"https:\/\/www.strata.io\/blog\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Governance &amp; Standards\",\"item\":\"https:\/\/www.strata.io\/blog\/governance-standards\/\"},{\"@type\":\"ListItem\",\"position\":3,\"name\":\"Hexa Policy Orchestration framework: Simplifying IAM policy for multi-cloud ecosystems (by Tom Malta)\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/www.strata.io\/#website\",\"url\":\"https:\/\/www.strata.io\/\",\"name\":\"Strata.io\",\"description\":\"Modern identity for any application\",\"publisher\":{\"@id\":\"https:\/\/www.strata.io\/#organization\"},\"alternateName\":\"Strata Identity\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/www.strata.io\/?s={search_term_string}\"},\"query-input\":\"required name=search_term_string\"}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/www.strata.io\/#organization\",\"name\":\"Strata.io\",\"alternateName\":\"Strata Identity\",\"url\":\"https:\/\/www.strata.io\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.strata.io\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/www.strata.io\/wp-content\/uploads\/2024\/02\/Strata-Logo-1200x1200-1.png\",\"contentUrl\":\"https:\/\/www.strata.io\/wp-content\/uploads\/2024\/02\/Strata-Logo-1200x1200-1.png\",\"width\":1200,\"height\":1200,\"caption\":\"Strata.io\"},\"image\":{\"@id\":\"https:\/\/www.strata.io\/#\/schema\/logo\/image\/\"},\"sameAs\":[\"https:\/\/www.linkedin.com\/company\/strata-identity\/\",\"https:\/\/www.youtube.com\/channel\/UCgW8ZmUzknjF6chjFWgwMAg\"]},{\"@type\":\"Person\",\"@id\":\"https:\/\/www.strata.io\/#\/schema\/person\/49fd745b8135ac9ad7f046e93664574a\",\"name\":\"Heidi King\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.strata.io\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/ee9a4da2fd637871555bbe57a9c4f409?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/ee9a4da2fd637871555bbe57a9c4f409?s=96&d=mm&r=g\",\"caption\":\"Heidi King\"},\"sameAs\":[\"http:\/\/strata.io\"]}]}<\/script>\n<!-- \/ Yoast SEO Premium plugin. -->","yoast_head_json":{"title":"IDQL\/Hexa Policy Orchestration Framework (Tom Malta) - Strata.io","description":"Tom Malta, global Identity Management expert, shares how the IDQL and Hexa Policy Orchestration framework can solve today's IAM challenges.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.strata.io\/blog\/governance-standards\/hexa-policy-orchestration-framework\/","og_locale":"en_US","og_type":"article","og_title":"Hexa Policy Orchestration framework: Simplifying IAM policy for multi-cloud ecosystems (by Tom Malta)","og_description":"Tom Malta, global Identity Management expert, shares how the IDQL and Hexa Policy Orchestration framework can solve today's IAM challenges.","og_url":"https:\/\/www.strata.io\/blog\/governance-standards\/hexa-policy-orchestration-framework\/","og_site_name":"Strata.io","article_published_time":"2022-06-29T21:47:01+00:00","article_modified_time":"2023-09-29T05:00:15+00:00","og_image":[{"width":665,"height":454,"url":"https:\/\/www.strata.io\/wp-content\/uploads\/2022\/06\/Hexa-Tom-Malta-Guest-Post-665-\u00d7-454-px.png","type":"image\/png"}],"author":"Heidi King","twitter_card":"summary_large_image","schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"TechArticle","@id":"https:\/\/www.strata.io\/blog\/governance-standards\/hexa-policy-orchestration-framework\/#article","isPartOf":{"@id":"https:\/\/www.strata.io\/blog\/governance-standards\/hexa-policy-orchestration-framework\/"},"author":{"name":"Heidi King","@id":"https:\/\/www.strata.io\/#\/schema\/person\/49fd745b8135ac9ad7f046e93664574a"},"headline":"Hexa Policy Orchestration framework: Simplifying IAM policy for multi-cloud ecosystems (by Tom Malta)","datePublished":"2022-06-29T21:47:01+00:00","dateModified":"2023-09-29T05:00:15+00:00","mainEntityOfPage":{"@id":"https:\/\/www.strata.io\/blog\/governance-standards\/hexa-policy-orchestration-framework\/"},"wordCount":1281,"commentCount":0,"publisher":{"@id":"https:\/\/www.strata.io\/#organization"},"image":{"@id":"https:\/\/www.strata.io\/blog\/governance-standards\/hexa-policy-orchestration-framework\/#primaryimage"},"thumbnailUrl":"https:\/\/www.strata.io\/wp-content\/uploads\/2022\/06\/Hexa-Tom-Malta-Guest-Post-665-\u00d7-454-px.png","articleSection":["Governance &amp; Standards"],"inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/www.strata.io\/blog\/governance-standards\/hexa-policy-orchestration-framework\/#respond"]}]},{"@type":"WebPage","@id":"https:\/\/www.strata.io\/blog\/governance-standards\/hexa-policy-orchestration-framework\/","url":"https:\/\/www.strata.io\/blog\/governance-standards\/hexa-policy-orchestration-framework\/","name":"IDQL\/Hexa Policy Orchestration Framework (Tom Malta) - Strata.io","isPartOf":{"@id":"https:\/\/www.strata.io\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.strata.io\/blog\/governance-standards\/hexa-policy-orchestration-framework\/#primaryimage"},"image":{"@id":"https:\/\/www.strata.io\/blog\/governance-standards\/hexa-policy-orchestration-framework\/#primaryimage"},"thumbnailUrl":"https:\/\/www.strata.io\/wp-content\/uploads\/2022\/06\/Hexa-Tom-Malta-Guest-Post-665-\u00d7-454-px.png","datePublished":"2022-06-29T21:47:01+00:00","dateModified":"2023-09-29T05:00:15+00:00","description":"Tom Malta, global Identity Management expert, shares how the IDQL and Hexa Policy Orchestration framework can solve today's IAM challenges.","breadcrumb":{"@id":"https:\/\/www.strata.io\/blog\/governance-standards\/hexa-policy-orchestration-framework\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.strata.io\/blog\/governance-standards\/hexa-policy-orchestration-framework\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.strata.io\/blog\/governance-standards\/hexa-policy-orchestration-framework\/#primaryimage","url":"https:\/\/www.strata.io\/wp-content\/uploads\/2022\/06\/Hexa-Tom-Malta-Guest-Post-665-\u00d7-454-px.png","contentUrl":"https:\/\/www.strata.io\/wp-content\/uploads\/2022\/06\/Hexa-Tom-Malta-Guest-Post-665-\u00d7-454-px.png","width":665,"height":454,"caption":"Hexa logo | image of Tom Malta | IDQL logo"},{"@type":"BreadcrumbList","@id":"https:\/\/www.strata.io\/blog\/governance-standards\/hexa-policy-orchestration-framework\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Blog","item":"https:\/\/www.strata.io\/blog\/"},{"@type":"ListItem","position":2,"name":"Governance &amp; Standards","item":"https:\/\/www.strata.io\/blog\/governance-standards\/"},{"@type":"ListItem","position":3,"name":"Hexa Policy Orchestration framework: Simplifying IAM policy for multi-cloud ecosystems (by Tom Malta)"}]},{"@type":"WebSite","@id":"https:\/\/www.strata.io\/#website","url":"https:\/\/www.strata.io\/","name":"Strata.io","description":"Modern identity for any application","publisher":{"@id":"https:\/\/www.strata.io\/#organization"},"alternateName":"Strata Identity","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.strata.io\/?s={search_term_string}"},"query-input":"required name=search_term_string"}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.strata.io\/#organization","name":"Strata.io","alternateName":"Strata Identity","url":"https:\/\/www.strata.io\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.strata.io\/#\/schema\/logo\/image\/","url":"https:\/\/www.strata.io\/wp-content\/uploads\/2024\/02\/Strata-Logo-1200x1200-1.png","contentUrl":"https:\/\/www.strata.io\/wp-content\/uploads\/2024\/02\/Strata-Logo-1200x1200-1.png","width":1200,"height":1200,"caption":"Strata.io"},"image":{"@id":"https:\/\/www.strata.io\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/www.linkedin.com\/company\/strata-identity\/","https:\/\/www.youtube.com\/channel\/UCgW8ZmUzknjF6chjFWgwMAg"]},{"@type":"Person","@id":"https:\/\/www.strata.io\/#\/schema\/person\/49fd745b8135ac9ad7f046e93664574a","name":"Heidi King","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.strata.io\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/ee9a4da2fd637871555bbe57a9c4f409?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/ee9a4da2fd637871555bbe57a9c4f409?s=96&d=mm&r=g","caption":"Heidi King"},"sameAs":["http:\/\/strata.io"]}]}},"_links":{"self":[{"href":"https:\/\/www.strata.io\/wp-json\/wp\/v2\/posts\/7243"}],"collection":[{"href":"https:\/\/www.strata.io\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.strata.io\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.strata.io\/wp-json\/wp\/v2\/users\/9"}],"replies":[{"embeddable":true,"href":"https:\/\/www.strata.io\/wp-json\/wp\/v2\/comments?post=7243"}],"version-history":[{"count":6,"href":"https:\/\/www.strata.io\/wp-json\/wp\/v2\/posts\/7243\/revisions"}],"predecessor-version":[{"id":19289,"href":"https:\/\/www.strata.io\/wp-json\/wp\/v2\/posts\/7243\/revisions\/19289"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.strata.io\/wp-json\/wp\/v2\/media\/7265"}],"wp:attachment":[{"href":"https:\/\/www.strata.io\/wp-json\/wp\/v2\/media?parent=7243"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.strata.io\/wp-json\/wp\/v2\/categories?post=7243"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.strata.io\/wp-json\/wp\/v2\/tags?post=7243"},{"taxonomy":"hashtags","embeddable":true,"href":"https:\/\/www.strata.io\/wp-json\/wp\/v2\/hashtags?post=7243"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}