Secagentd is a daemon responsible for detecting and reporting security related events through ERP (Encrypted Reporting Pipeline) for forensic analysis.
Secagentd logs are located in /var/log/secagentd.log.