Photo: Wodicka/ullstein bild via Getty Images

There is a critical shortage of cybersecurity experts working in public interest roles, including advising at-risk charitable groups, lawmakers and advocacy organizations.

Why it matters: We've written before about difficulties legislators have finding experienced advisers for tech issues and the detrimental effect that can have on policy debates.

  • This is all according to security expert Bruce Schneier, who will host the first symposium on the subject at March's RSA conference ("Bridging the Gap: Cybersecurity + Public Interest Tech").
  • "But it's not just a policy problem," Schneier told Axios' Codebook newsletter. "Civil groups need cybersecurity professionals for protection."

The big picture: There's plenty of need for hackers to serve in public interest roles — but groups are unaware they need the help, and there is little infrastructure to guide civic minded security pros to those groups.

  • This isn't an abstract problem. We've recently seen nations target outmatched nongovernmental groups that antagonize them in even trivial ways. Mexico appears to have spied on advocates of a soda tax in 2017 with militarized spyware that's only sold to governments.

Schneier sees the gap as two solvable problems: "There's a supply problem and a demand problem," he noted.

  • Qualified professionals don't currently know they are needed. And when they do, they often don't know how to get involved.
  • Advocacy, governmental and charitable groups will never be able to pay as much as the private sector.
  • But, said Schneier, that hasn't stopped these groups from being able to employ other traditionally highly paid workers at steep discounts. "I don't know how to solve the salary issue," he said, noting that volunteering and rotating in and out of public service jobs might be an option. "But I do know that the ACLU can only pay a fraction of what a law firm can, but that every time there is an opening they get 100 applicants."

The demand problem can be especially complicated for protection positions.

  • Many public interest groups don't realize they are targeted by governments. Those that do might still decide they'd prefer to use their limited resources on their actual mission rather than on cybersecurity protection.
  • But the problem has grown big enough that the University of Toronto's Citizen Lab has built an international reputation by investigating nation state breaches of public service groups.
  • "High risk groups have resource constraints all over the place," said Citizen Lab's John Scott-Railton, who will appear at the RSA symposium. "A top flight researcher is going to go to an NGO and discover they haven’t set their printer up correctly."

Between the lines: Security tech doesn't work without a qualified person to run it, said Scott-Railton. This isn't a problem that can be solved without funneling new bodies into the sector.

  • RSA is a high profile conference attracting much of the field's talent. It's also a particularly business-focused event, making this a unique place to launch this initiative. Schneier said he doesn't know what size crowd to expect. But sometimes, he said, just getting the conversation started is enough.

Go deeper: "White hat" hackers fill companies' cybersecurity demand

Go deeper

4 hours ago - Technology

TikTok to pull out of Hong Kong

Illustration: Aïda Amer/Axios

TikTok said Monday night that it would pull its social video platform out of the Google and Apple app stores in Hong Kong amid a restrictive new law that went into effect last week.

Why it matters: TikTok's move comes as many large tech companies say they are still evaluating how to respond to the Hong Kong law.

7 hours ago - World

Ethiopia's Nobel Peace laureate cracks down on ethnic violence

The image of a Nobel Peace laureate in military fatigues encapsulates the moment in which Ethiopia finds itself — on the verge of a transition to democracy, a descent into violence or, perhaps, a precarious combination of the two.

Driving the news: At least 166 people were killed after an iconic musician, Haacaaluu Hundeessaa, was murdered last Monday in Addis Ababa, the capital. Prime Minister Abiy Ahmed responded to the violence by sending in troops and shutting off the internet. High-profile opposition leaders were arrested, along with some 2,300 others.

Updated 8 hours ago - Health

Atlanta Mayor Keisha Lance Bottoms tests positive for coronavirus

Atlanta Mayor Keisha Lance Bottoms said on Monday that she has tested positive for the coronavirus after displaying no symptoms.

Why it matters: Bottoms, one of several Black women on the shortlist to be Joe Biden's running mate, has risen to national prominence in recent months as part of mass protests over racism and police brutality — driven in part by the killing of Rayshard Brooks by Atlanta police.