Summit 2019: Cybersecurity and Public Interest Tech with Bruce Schneier

Code for America Summit is just around the corner, and in the coming weeks we'll be giving you a preview of our lineup of inspiring speakers. These are leaders in tech and government who not only share our vision for a radically improved future for government services, but show what works and imagine what's possible. Want to hear more? It's not too late to get your tickets!

Bruce Schneier is an internationally renowned security technologist who has testified before Congress and served on several government committees. Schneier is a fellow at the Berkman Klein Center for Internet & Society at Harvard University, a Lecturer in Public Policy at the Harvard Kennedy School, and a special advisor to IBM Security. At this year's Code for America Summit, he will give a keynote presentation on bridging the gap between technology and public policy, in the cybersecurity world and beyond.

The theme of Summit 2019 is "Designing better government"—what does that look like to you?

When I envision successful government in the information age, I see a government that is not afraid to try, fail, and iterate. I see this as a major cultural difference between policy makers and technologists. Technologists are not afraid to fail; failure is even a badge of honor, because it means that you tried and learned something. Technologists are not afraid to iterate; they know that it's easier to get something right by version 3.0 if you can learn from the mistakes of versions 1.0 and 2.0. Policymakers don't think like this. They want to get it right the first time. They know that if they get it wrong, their community is just as likely to abandon the idea entirely as to figure out how to improve it.

This has to change. Whether it's bringing the idea of agile development to legislation and regulation, or just bringing to government the idea that failure is a form of learning, policymakers need to think more like engineers. They need to see their work as solving problems, and not fighting for their preconceived solutions.

How does designing better government relate to your work?

I am a security technologist, and also a public interest technologist. I try to bridge the gap between technology and policy—in the world of cybersecurity and more broadly. I write about tech policy, and I teach cybersecurity to public policy students. In my way, I am helping to bring about an ecosystem where public interest technology is as viable a career path as public interest law is.

What are the biggest challenges that our movement is facing today?

Change is hard. Government has a set way of doing things, one that has evolved over generations. It works at speeds much slower than technology advances, and is suspicious of the "creative destruction" model that technology embraces. This isn't necessarily a bad thing.

Technology companies are quick to jettison—or at least ignore—many of the rules we have in place to protect minority voices and marginalized communities in favor of the majority and the powerful. Getting that right is a big challenge, and not one we can ignore in our rush to build the future.

Bridging technology and public policy is hard. There aren't enough people who want to do this work, and there aren't enough jobs for the few who want to. The money isn't there. The desire isn't there. But this is how we are we are going to solve the major public-policy problems of the information age. In the second half of last century, the fundamental question of society was this: "How much of our lives should be governed by the state, and how much by the market?" Answering that question dominated both foreign and domestic policy, and is why institutions like the Harvard Kennedy School (where I teach) is filled with economists. In the first half of this century, the fundamental question of society is this: "How much of our lives should be governed by technology, and under what rules?" Answering this question will require public interest technologists.

What are you excited for about Summit this year?

I am excited to talk to a group of technologists working in the public interest. There aren't a lot of us—despite how large this Summit is—and we come from a diversity of backgrounds. I want to meet the people who make up the Code for America community and learn how they are bridging the divide between technology and public policy.

By the way, if you want to learn more about public interest technology, I maintain a resources page at There you can read my writings on the subject, watch the videos from a one-day mini-track I hosted on the topic at the RSA Conference this year, read the reports that Freedman Consulting wrote for the Ford Foundation, look at all the university programs in this area, and see a list of all the NGOs that are doing public-interest tech. If you have any additions, please send them to me at

I'll see you in Oakland!

Categories: Text, Written Interviews

Sidebar photo of Bruce Schneier by Joe MacInnis.

Schneier on Security is a personal website. Opinions expressed are not necessarily those of IBM Resilient.