Skip to main content

You are here

NITOAD Splunk Administrator 20-21 San Antonio, Texas

NITOAD Splunk Administrator
Job Location: 
San Antonio
Date Posted: 
Friday, June 26, 2020

The Federal Public Defender, Western District of Texas is accepting applications for the position of Splunk Administrator, National IT Operations and Applications Development Branch, located in San Antonio, Texas. This is a temporary position for one year and a day, with the option to convert to a permanent position with acceptable job performance. The NITOAD branch supports the federal defender program’s staffed offices in 204 locations throughout the continental United States, Alaska, Hawaii, Puerto Rico, the Virgin Islands, and Guam. The federal defender program operates under authority of the Criminal Justice Act, 18 U.S.C. § 3006A, to provide defense services in federal criminal cases and related matters by appointment from the court to individuals unable to afford counsel.


To qualify for a Splunk Administrator, a person must be a high school graduate or equivalent. Candidates must have demonstrated at least 5+ years of Machine Data Management & Analytics with a minimum of 1-year Splunk experience to include design, configuration, and support of Enterprise Information Systems. Some higher education from an accredited college or university (with a concentration in computer or management-information science or a related field) may be substituted for some of the required experience. Notwithstanding any educational substitution, specialized experience in two or more of these areas is required: 

  • Experience administering Splunk on an enterprise level;

  • Experience authoring technical documentation such as Installation/Deployment Procedures;

  • Experience with Splunk multisite Clustering;

  • Experience with developing enterprise strategic architecture and implementation of Splunk deployments;

  • Proficiency with Regular Expressions, Splunk Visualizations, SPL searches, Dashboards and Drilldowns;

  • Proficiency with creating custom Splunk Add-ons for new and unique sources and source types;

  • Experience with various network monitoring programs, such as Syslog-ng, Splunk, Wireshark, SolarWinds;

  • Strong preference for those with extensive experience in architecting, developing, deploying,

    configuring, and administering simple to complicated Splunk deployments;

  • Splunk training and/or certifications are preferred; and

  • Operation & administration of a Linux/Windows blended environment is a plus. 

Minimum Requirements:

  • Experience to operate and maintain Splunk log management infrastructure;

  • Experience leveraging knowledge of several technological domains including IT operations, DevOps, Analytics, Information Security, operating systems and networking to enrich Splunk data and adapt to changing technologies and processes;

  • Experience and familiarity with IT management processes and software products, networking and security patching;

  • Experience working with customers to onboard data, configurations, and optimizations in Splunk;

  • Experience with using scripting languages to automate tasks and manipulate data;

  • Ability to apply efficient time management skills, solve complex technical problems; and

  • Possess high quality communication skills in a professional environment, a self-starter, and good research abilities.

This position is classified as “high sensitive.” Employment will be considered provisional pending the successful completion of an initial 10-year background investigation with updates performed every five years thereafter. Continued employment will depend upon the successful completion and favorable determinations based on investigation results.  Applicants must be US citizens or be eligible to work for the federal government.


The Splunk Administrator will, configure, and deploy Splunk products and log management solutions, develop automation for security tools management, create customized search heads, and develop adhoc searches using programming and development expertise in languages such as Java, Python, Shell scripting, and/or regular expression. Additional duties include:

  •  Recommend, monitor, and improve NITOAD’s continual deployment infrastructure;
  • Help keep key systems and servers up and operational, ensuring that all systems are securely servicing all customers;

  • Provide technical leadership, coaching, and mentoring for the existing staff;

  • Identify issues, collaborate with stake holders on solutions, and provide follow-up on the implementation;

  • Analyze and adapt Splunk deployment targets to support changing needs and environments;

  • Some travel and lifting equipment up to 50 pounds is required; and

  • Other duties as assigned.

The applicant should also demonstrate strong attention to detail and the ability to establish and maintain effective, cooperative, and diplomatic working relationships with colleagues, supervisors, external contacts, and the public.

Salary and Benefits: 
Starting salary will be fixed commensurate with experience and qualifications within a range from JSP-11, Step 1 to JSP-13, Step 1 and currently yielding $65,141 to $91,876 per annum. The position is in the excepted service and does not have the tenure right of the competitive Civil Service. The position does carry regular government employment benefits including health and life insurance, retirement, and the Thrift Savings Plan. Salary is payable only by Electronic Funds Transfer (direct deposit).
How to apply: 

Qualified persons may apply by forwarding a letter of interest (mentioning announcement number 20-21) and résumé to: Maureen Scott Franco, Federal Public Defender, Western District of Texas, 7550 IH-10 West, Suite 200, San Antonio, Texas 78229. No electronic submissions will be considered unless they are submitted through or This includes emails to the Defender.  For applicants with disabilities, this organization provides reasonable accommodations, which are decided on a case-by-case basis. To request a reasonable accommodation for any part of the application or interview process, contact Personnel Administrator, Victoria Longoria (210) 472-6700.  More than one position may be filled from this announcement. Position announced June 26, 2020, subject to the availability of funds; open until filled. 

The Federal Public Defender is an equal-opportunity employer.