Security appliance extension

The invention claimed is: 1 . An electronic device, comprising: a security appliance comprising a sensor configured to: monitor a protected component for security events; and generate one or more security event messages for the security events, wherein each of the one or more security event messages comprises a respective first code and a respective first severity, wherein the respective first code is one of a predefined list of a plurality of codes, wherein each of the plurality of codes is used to specify a respective type of program logging the one or more security event messages; an embedded computer, comprising one or more processors configured to: receive the one or more security event messages from the security appliance; identify, from a first code in the one or more security event messages, an indication of a first type of program logging the one or more security event messages with a first severity classification; translate, via a syslog mapping script, the one or more security event messages from the first severity classification to a first customized severity characterization based at least in part upon the indication of the first type of program logging the one or more security event messages, wherein the first customized severity characterization is different from a second customized severity characterization identified based at least in part upon an indication of a second type of program logging the one or more security event messages specified by a second code of the predefined list of the plurality of codes; determine one or more presentation or control actions to be performed based upon the first customized severity characterization; and send instructions to a security appliance extension device to cause the security appliance extension device to automatically perform the one or more presentation or control actions comprising controlling a set of one or more lights to provide an indication of the first customized severity characterization using different lighting patterns. 2 . The electronic device of claim 1 , wherein the first customized severity characterization is determined by executing a mapping script that maps one or more characteristics of the one or more security event messages received by the security appliance to a particular customized severity characterization expected by the embedded computer. 3 . The electronic device of claim 2 , wherein the one or more characteristics of the one or more security event messages received by the security appliance comprises a first severity level and the particular customized severity characterization expected by the embedded computer is a second severity level. 4 . The electronic device of claim 2 , wherein the one or more processors of the embedded computer are configured to execute the mapping script. 5 . The electronic device of claim 2 , wherein the first customized severity characterization is received from the security appliance. 6 . The electronic device of claim 1 , comprising a display, wherein the one or more presentation or control actions comprises: presenting, via a graphical user interface (GUI) on the display, one or more alarm banners associated with the one or more security event messages, the one or more alarm banners displayed based upon the first customized severity characterization. 7 . The electronic device of claim 1 , wherein the one or more presentation or control actions comprises modifying an operational status of the protected component. 8 . The electronic device of claim 7 , wherein the protected component comprises an amusement attraction. 9 . The electronic device of claim 1 , wherein the one or more security event messages comprise a message generated in accordance with a Syslog standard for message logging. 10 . The electronic device of claim 1 , comprising: one or more input/output (I/O) devices configured to receive one or more I/O commands from an operator of the electronic device, or provide one or more output indications to the operator, or both; and a programmable logic controller (PLC) configured to: receive I/O data indicative of the one or more I/O commands, and implement the one or more I/O commands; or receive the one or more output indications, and present the one or more output indications via the one or more I/O devices; or both. 11 . The electronic device of claim 10 , wherein the one or more I/O devices comprise the set of one or more lights that provide the indication of the first customized severity characterization; wherein the set of one or more lights comprises a fault light that selectively indicates a critical severity security event when in a first state and a medium severity security event when in a second state; and wherein the set of one or more lights comprises a health light that indicates whether all expected interfaces are communicatively coupled to the electronic device. 12 . The electronic device of claim 10 , wherein the embedded computer is configured to: determine when a continuously changing state of a variable of the PLC is not detected at the embedded computer within a threshold amount of time; and provide a fault in response to not detecting the continuously changing state of the variable within the threshold amount of time, the fault indicating a malfunction of the embedded computer. 13 . The electronic device of claim 10 , wherein the one or more I/O devices comprise a run/bypass switch that: when in a run mode, causes logging and presentation of one or more alarm banners associated with the one or more security event messages and causes presentation of one or more alarms associated with the one or more security event messages, as they are received; and when in a bypass mode, causes logging and presentation of the one or more alarm banners associated with the one or more security event messages, and causes refrain from presentation of the one or more alarms associated with the one or more security event messages, as they are received. 14 . The electronic device of claim 10 , wherein the one or more I/O devices comprise a reset switch that, when set to a reset mode, causes the embedded computer to power down, or reboot, or both. 15 . A tangible, non-transitory, computer-readable medium, comprising computer-readable instructions that, when executed by one or more processors of a computer system, cause the computer system to: monitor, via a security appliance comprising a sensor, a protected component for security events; generate, via the security appliance, one or more security event messages for the security events, wherein each of the one or more security event messages comprises a respective first code and a respective first severity, wherein the respective first code is one of a predefined list of a plurality of codes, wherein each of the plurality of codes is used to specify a respective type of program logging the one or more security event messages; receive the one or more security event messages from the security appliance; identify, from a first code in the one or more security event messages, an indication of a first type of program logging the one or more security event messages with a first severity classification; translate, via a syslog mapping script, the one or more security event messages from the first severity classification to a first customized severity characterization based at least in part upon the indication of the first type of program logging the one or more security event messages, wherein the first customized severity characterization is different from a second customized severity characteriza