Yolk Recruitment Ltd
Threat and Vulnerability Manager

How your CV stacks up
Upload your CV to see how well it fits this job role
?%
Threat and Vulnerability Manager
£55k
Newport (x1 day a week)
Benefits:
- 28.9% pension & Flexi-working
The Opportunity
Yolk Recruitment Public Sector & Not-for-Profit team has partnered with a specialised Civil Service Organisation who are presently undergoing an interesting transformation into the cloud space.
In this role, you will oversee and continuously improve the management of vulnerability assessments across our hybrid IT environment. Using a risk-based, threat-informed approach, you will prioritise remediation efforts and work closely with stakeholders to enhance the security posture of our systems and services.
Vulnerability Management (Primary Focus)
- Lead and improve the organisation's vulnerability management programme across a hybrid IT environment, including infrastructure and applications.
- Oversee penetration testing activities, including scoping, prioritisation, stakeholder engagement, and remediation tracking.
- Assess and prioritise vulnerabilities using a risk-based, threat-informed approach aligned with business, regulatory, and audit requirements.
- Manage the full vulnerability lifecycle, including triage, mitigation planning, remediation guidance, and coordination with relevant teams.
- Develop and maintain policies, procedures, standards, and best practice guidance.
Threat Intelligence
- Produce tactical, operational, and strategic threat intelligence assessments using internal, commercial, open-source, and external partner intelligence sources.
- Support intelligence-sharing initiatives and strengthen overall cyber intelligence capability.
- Provide timely analysis of emerging threats and the wider threat landscape.
Reasons to use Rodeo
I’m in my final year doing Economics and I don’t know whether to apply for grad schemes now or do a masters first. What do you think?
Honest answer — it depends on where you want to end up. A lot of top grad schemes (Big 4, civil service, banking) don’t need a masters. Let’s look at the ones you’d be competitive for now, and we can decide if a masters actually adds anything.
Also worth knowing: most autumn 2026 applications are open now. Timing matters more than you think.
Start with a chat, not a search bar
Grad scheme, placement, apprenticeship? Not sure what you want yet — that's fine. Your agent talks it through with you and turns "I have no idea" into a shortlist.
Graduate Consultant — 2026 Scheme
Why you're a good match
StrongYour economics background and your summer at a regional bank line up with what PwC looks for on the consulting scheme. Applications close in four weeks.
See breakdownIt searches the market for you
Every day your agent scans the market matching roles against what actually matters to you, not just keywords on a CV.
Why you're a good match
You’ve got the grades and the economics background, and your bank internship is exactly the experience this scheme looks for. Apply soon — deadlines close within the month.
Experience fit
Your summer at the bank plus your econometrics coursework map directly to the day-one responsibilities on this scheme — client modelling, market briefings, and deal support.
Only hits
No noise. No "maybe this fits." Just roles with a clear explanation of why they're right — and where to focus when applying.
Cyber Risk Management
- Support cyber risk management activities through risk and threat assessments aligned with regulatory and security standards.
- Provide practical, proportionate security advice to stakeholders.
Reporting & Metrics
- Develop and maintain meaningful metrics to measure the effectiveness of vulnerability management and threat intelligence functions.
Incident Response Support
- Support and enhance incident response processes.
- Represent cyber security during operational incidents, coordinate with stakeholders, and assist threat intelligence and threat-hunting activities.
Technical Experience
- Strong experience in vulnerability management, threat intelligence, and security operations within complex enterprise environments.
- Experience managing penetration testing programmes.
- Understanding of secure development practices and security testing within the software development lifecycle (SDLC).
- Broad technical knowledge of hybrid/cloud infrastructure, identity management, and application security.


Get help with your application
Your very own career expert that helps elevate your application to the next level.
Here's What You'll Get in Return
- Pension scheme up to 28.9%
- Salary: £55,000
- Full Flexi-Time - Work your 37.5 hours on any schedule between 5am and 10pm
- Accrued Time - If you work 37.5 hours in 4 days, you can have the fifth day off
- Unlimited Pluralsight learning videos
- 25 Days annual leave PLUS Bank Holidays (Increasing to 30 days)
Think this one's for you
If you think this Threat and Vulnerability Manager opportunity is for you then please apply online.
Yolk Public Sector & Not-for-Profit team works with organisations across the UK to fulfil their recruitment needs and to achieve their D&I objectives. We recruit temporary, contract and permanent hires for 1 off specialist needs or for volume campaigns. We support our applicants to navigate the public sector recruitment processes and secure their dream jobs.
Yolk Recruitment is an equal opportunities employer and embraces diversity in our workforce. We employ the best people for the job at hand and actively encourage applications from all qualified candidates, regardless of gender, age, race, religion, sexual orientation, disability, educational background, parental status, gender identity or any other protected characteristic. We champion and celebrate diversity at Yolk allowing our team to bring their whole selves to work.
LNKD1_UKTJ
“It took my CV and asked me questions relevant to understanding what kind of jobs to suggest for me. Suggestions were almost perfect. Jobs were exactly what I’ve been looking for.”
Jessica, London
Skills
Location