Systems and methods for presenting security questions via connected security system

What is claimed is: 1. A method, comprising: at a server system having one or more processors and memory storing instructions for execution by the one or more processors, wherein the server system is associated with a security system and coupled to one or more smart devices and a client device via one or more wide area networks, and the one or more smart devices are located at a premises: detecting an unverified user within the premises based on data collected by a first smart device at the premises, wherein the data is communicated to the server system via the wide area networks; providing a notification regarding the unverified user to one or more authorized users distinct from the unverified user via the wide area networks, the notification being configured for display on a user interface of a client application executed on the client device; receiving, over the wide area networks and from a first authorized user of the one or more authorized users, a first user input in response to the notification, the first user input being entered on the user interface of the client application executed on the client device and corresponding to instructions to execute a first security protocol; in response to receiving the first user input, executing the first security protocol, the first security protocol comprising: causing a second smart device to present to the unverified user an authentication request, and receiving over the wide area networks a response to the authentication request collected by a third smart device at the premises; and executing or declining to execute a second security protocol based on the received response to the authentication request. 2. The method of claim 1 , wherein detecting the unverified user includes receiving inputs from one or more distinct devices of the server system. 3. The method of claim 1 , wherein detecting the unverified user includes: obtaining an activity pattern of a second authorized user of one or more authorized users; identifying an activity pattern of the unverified user; and determining that the activity pattern of the unverified user is at least partially distinct from the activity pattern of the second authorized user. 4. The method of claim 3 , wherein the activity pattern for the second authorized user indicates, for a respective day of the week and/or a respective range of time: a time spent in an area of the premises, and/or a number of instances in which the second authorized user entered the area of the premises. 5. The method of claim 1 , further comprising: receiving, from the first authorized user, a second user input responsive to the notification and corresponding to instructions to execute the second security protocol; and in response to receiving the second user input, executing the second security protocol. 6. The method of claim 1 , further comprising: receiving, from the first authorized user, a second user input responsive to the notification and corresponding to instructions to execute a third security protocol; and in response to receiving the second user input, executing the third security protocol, wherein the first security protocol, the second security protocol, and the third security protocol are distinct. 7. The method of claim 1 , wherein the authentication request comprises a security question, and the response comprises an answer responsive to the question. 8. The method of claim 1 , wherein presenting the authentication request includes playing a pre-recorded audio file. 9. The method of claim 1 , wherein the response to the authentication request is a recorded audio file. 10. The method of claim 9 , wherein executing the first security protocol further comprises determining whether the unverified user is an authorized user based on the response to the authentication request, including applying audio processing techniques to process the recorded audio file. 11. The method of claim 1 , wherein executing the second security protocol includes: after receiving the response to the authentication request: receiving, by the server system and over the wide area networks, a second user input that selects the second security protocol from a plurality of security protocol options, a second user interface of the client application being displayed on the client device to present the plurality of security protocol options and receiving the second user input; and in accordance with the selected second security protocol, sounding an alarm device. 12. The method of claim 1 , wherein executing the second security protocol includes: after receiving the response to the authentication request: receiving, by the server system and over the wide area networks, a second user input that selects the second security protocol from a plurality of security protocol options, a second user interface of the client application being displayed on the client device to present the plurality of security protocol options and receiving the second user input; and in accordance with the selected second security protocol, providing a notification to one or more other authorized users. 13. The method of claim 1 , wherein executing the second security protocol includes: after receiving the response to the authentication request: receiving, by the server system and over the wide area networks, a second user input that selects the second security protocol from a plurality of security protocol options, a second user interface of the client application being displayed on the client device to present the plurality of security protocol options and receiving the second user input; and in accordance with the selected second security protocol, sending instructions to other devices. 14. The method of claim 1 , wherein executing the first security protocol further comprises: determining whether the unverified user is an authorized user based on the response to the authentication request; if the unverified user is not an authorized user, executing the second security protocol; and if the unverified user is an authorized user, declining to execute the second security protocol. 15. The method of claim 14 , wherein determining whether the unverified user is an authorized user based on the response to the authentication request comprises: presenting to the first authorized user the response to the authentication request; and receiving, from the first authorized user, a second user input responsive to the presented response to the authentication request, the second user input indicating whether the unverified user is authorized. 16. The method of claim 1 , further comprising: in the absence of receiving a user input responsive to the notification, executing the first security protocol. 17. The method of claim 1 , further comprising: in the absence of receiving from the unverified user the response to the authentication request, executing the second security protocol. 18. The method of claim 1 , wherein the unverified user is detected according to a predetermined sensitivity that excludes a region of the premises from detection or specifies a range of time for detection. 19. A server system associated with a security system and a premises, comprising: a processor, wherein the server system is coupled to one or more smart devices and a client device via one or more wide area networks, and the one or more smart devices are located at a premises; and memory for storing one or more programs for execution by the processor, the one or more programs including instructions for: de