Security Analytics runs on a normal version of CentOS Linux.  Often there are client-developed agents or generic agents that may be required by your environment for monitoring purposes.  

Security Analytics is a closed appliance operating environment. Running of third-party software or configuration of the operating system outside the Security Analytics user interface is not supported. If you do make such changes and subsequently encounter operational or performance issues, you will be asked by Broadcom Support to remove any third-party software or custom configurations (not supported via the Security Analytics user interface) from your system as part of the diagnostic process.  In some instances, you may be required to completely reinstall the appliance to get back to a supported software state.