There are various products and even some Symantec Products like Symantec Messaging Security (formerly Symantec Brightmail Gateway) providing a feature to enable organizations to be able to store incident data locally instead of storing it into the oracle database. These days the compliance requirements are getting more & more unique with at times administrators requiring to perform heavy monitoring generating a stream of heavy incident data. Not to forget the requirement to even retain heavy attachments for endpoint incidents now.
Considering all of this, mostly environments have database sizes in TBs generally and incident data is the only culprit for such situations. I feel it would be nice to be able to store all this incdent data locally (maybe encrypted too).