Yolk Recruitment Ltd
Threat and Vulnerability Manager

How your CV stacks up
Upload your CV to see how well it fits this job role
?%
Threat and Vulnerability Manager
Threat and Vulnerability Manager
£55k | Newport (x1 day a week)
Benefits
- 28.9% pension contribution
- Flexi-working
The Opportunity
The Yolk Recruitment Public Sector & Not-for-Profit team has partnered with a Civil Service Organisation undergoing a cloud-based transformation. The ideal candidate will:
About the Role
Oversee and continuously improve the management of vulnerability assessments across a hybrid IT environment using a risk-based, threat-informed approach. Work closely with stakeholders to enhance the organisation’s security posture.
Vulnerability Management (Primary Focus)
- Lead and improve the organisation’s vulnerability management programme, covering infrastructure, applications, and hybrid IT environments
- Oversee penetration testing activities, including:
- Scoping and prioritisation
- Stakeholder engagement
- Remediation tracking
- Assess and prioritise vulnerabilities in alignment with business, regulatory, and audit requirements
- Manage the full vulnerability lifecycle:
- Triage
- Mitigation planning
- Remediation guidance
- Cross-team coordination
- Develop and maintain policies, procedures, standards, and best practice guidance
Threat Intelligence
- Produce tactical, operational, and strategic threat intelligence assessments using:
- Internal intelligence
- Commercial intelligence
- Open-source information
- External partnership data
- Support intelligence-sharing initiatives
- Strengthen the organisation’s overall cyber intelligence capability
- Analyse emerging threats and the broader threat landscape
Reasons to use Rodeo
I’m in my final year doing Economics and I don’t know whether to apply for grad schemes now or do a masters first. What do you think?
Honest answer — it depends on where you want to end up. A lot of top grad schemes (Big 4, civil service, banking) don’t need a masters. Let’s look at the ones you’d be competitive for now, and we can decide if a masters actually adds anything.
Also worth knowing: most autumn 2026 applications are open now. Timing matters more than you think.
Start with a chat, not a search bar
Grad scheme, placement, apprenticeship? Not sure what you want yet — that's fine. Your agent talks it through with you and turns "I have no idea" into a shortlist.
Graduate Consultant — 2026 Scheme
Why you're a good match
StrongYour economics background and your summer at a regional bank line up with what PwC looks for on the consulting scheme. Applications close in four weeks.
See breakdownIt searches the market for you
Every day your agent scans the market matching roles against what actually matters to you, not just keywords on a CV.
Why you're a good match
You’ve got the grades and the economics background, and your bank internship is exactly the experience this scheme looks for. Apply soon — deadlines close within the month.
Experience fit
Your summer at the bank plus your econometrics coursework map directly to the day-one responsibilities on this scheme — client modelling, market briefings, and deal support.
Only hits
No noise. No "maybe this fits." Just roles with a clear explanation of why they're right — and where to focus when applying.
Cyber Risk Management
- Support cyber risk management through:
- Risk and threat assessments aligned with regulations and security standards
- Providing practical, proportionate security advice to stakeholders
- Enhance incident response processes and participate in:
- Incident response coordination
- Threat intelligence analysis
- Support for threat-hunting activities
Reporting & Metrics
- Develop and monitor meaningful KPIs and metrics to track the effectiveness of:
- Vulnerability management
- Threat intelligence functions
Technical Experience Required
- Specialised experience in vulnerability management, threat intelligence, and security operations within complex enterprise environments
- Proven management of penetration testing programmes
- Strong understanding of:
- Secure development practices
- Security testing within the software development lifecycle (SDLC)
- Hybrid/cloud security
- Identity management
- Application security


Get help with your application
Your very own career expert that helps elevate your application to the next level.
Additional Compensation & Benefits
- Pension scheme up to 28.9%
- Salary: £55,000
- Flexible working—work 37.5 hours across a schedule between 5am and 10pm per day
- Accrued time off: Work 37.5 hours on 4 days → 5th day off
- Unlimited access to Pluralsight learning videos
- 25 days annual leave (increasing to 30 days) plus bank holidays
Why This Opportunity?
Apply online if you are passionate about threat management, vulnerability assessments, and advancing Cybersecurity in enterprise environments.
About Our Team
The Yolk Recruitment Public Sector & Not-for-Profit team supports organisations across the UK, helping with specialty or bulk hiring needs while promoting Diversity and Inclusion (D&I) objectives.
Key Commitments
- Equal opportunities employer
- Diversity and inclusion champion
- Open to applications from qualified candidates from all backgrounds:
- Gender • Age • Race • Religion • Sexual orientation • Disability • Parental status • Gender identity
Apply now to be part of this transformative role! 🔒
“It took my CV and asked me questions relevant to understanding what kind of jobs to suggest for me. Suggestions were almost perfect. Jobs were exactly what I’ve been looking for.”
Jessica, London
Skills
Location