• Test Project Leader - Privacy Policies

    Location
    US-NY-Yonkers
    Experience (Years)
    2
  • Position Overview

    Consumer Reports is seeking a Project Leader to oversee testing projects as a member of our new Digital Lab team —  a group of tenacious journalists, privacy experts, product testers, technologists and policy analysts dedicated to shining a light on the data privacy and security issues that consumers increasingly face, as well as examining the broader topics of fair market competition, transparency, and consumer choice in today's marketplace. By scaling our capabilities and expertise for the digital era, Consumer Reports is expanding efforts to protect, educate, and empower consumers in our connected world while holding companies to higher standards.

     

    We need someone with hands-on experience writing, applying, and analyzing policies related to privacy and security in connected products. We’re looking for the kind of people who have actually read (and understood) the terms of service, who understand the importance of transparency and the complexities of trust and veracity, who have opinions on GDPR and a US-centric general privacy law, or who have advised product engineers on privacy/security design principles for an app. This person would augment our team with the skill set and investigative leadership we need to be effective and timely, while establishing good practices and collaborating with team members to produce solid, repeatable results.

     

    The Project Leader oversees testing projects, ensures that testing protocols and procedures are followed, and methodologies are developed to meet our continually transforming testing objectives to analyze policies related to privacy and security in connected products.

    Qualifications Include

    • BS college degree or equivalent background with 2-3 years experience with privacy policy and ToS analysis
    • Familiarity with privacy and security trends and concerns in the development and deployment of
      IoT devices, smartphones, apps, the web, networks, cloud-based platforms, and data/ad brokers.
    • Attention to detail, using well-defined methods and documentation to support analysisSolid organization, communication, and collaboration skills
    • Experience and comfort with G Suite (Google Docs, Google Sheets, etc.)
    • Familiarity with current legal frameworks, and production challenges in the field of privacy, e.g.
      Dark Patterns, Privacy by Design, Data Portability, GDPR, CCPA, COPPA, etc.
    • Familiarity with tools and platforms that assist with policy analysis (e.g. ToS;DR, Polisis, usableprivacy.org)
    • Ability to work independently, with enthusiasm for team-based projects and activities
    • Experience with tool and web development, agile workflows, OSINT tools such as Buscador and
      developing training materials would be preferred.
    • Ability to complete complex assignments requiring ingenuity, originality and resourcefulness.
    • Attention to detail, using well-defined methods and documentation to support analysis.

    Key Responsibilities

    • Plans, coordinates and oversees test projects for privacy and security of connected products.
    • Develops methods and evaluative frameworks for testing privacy and security concerns of connected products: IoT devices, smartphones, apps, the web, networks, cloud-based platforms, and data/ad brokers.
    • Collaborates to integrate privacy and security testing techniques into new and existing workflows and ensures proper implementation.
    • Ensures test methods and processes meet standards for accuracy, repeatability and dependability.
    • Evaluates and recommends improvements to test procedures. Develops and maintains tools and pipelines
      to streamline testing processes and investigatory techniques.
    • Utilizes expertise, teamwork and education to lead hands-on privacy and security testing of connected
      products.
    • Interacts with communities of researchers and industry professionals working on similar topics to innovate
      on methodology, tools, and frameworks as necessary.
    • Actively participates as member of product testing and content team to collaborate on identifying topics of
      interest and objectives of privacy & security testing protocols.
    • Author reports and present findings, issues and concepts to staff to provide clear evidence of analysis and
      provide feedback for improving methodology and tools.
    • Maintains up to date understanding of the current issues and ideas in the field of security and privacy in
      connected products
    • Performs other duties as assigned but not at a higher level.

    Options

    Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
    Share on your newsfeed