Relevant up to at least SSIM 4.7.4
Currently, the permission for creating and executing SQL Queries is only available to users in the Domain Administrator role. This present structure doesn't entirely make sense, given all of the modular capabilities for creating Roles. Give administrators the choice of allowing analysts to have this permission, rather than forcing them to give the analysts complete administrative access just in order to be able to author some SQL queries.
This way the security structure remains least-privilege. I'd really rather not have to grant admin access to five analysts just so they can collaborate on some effective means to decipher rule trending, such as the "top signatures correlating daily under 'x' rule".