Managing MDE will happen through Configuration Manager. A default antimalware policy already exists. For information on configuring custom policies, refer to the Microsoft documentation.
An Antimalware policy that was created by Microsoft exists on the platform and is enabled by default. For a granular level of control, ITSOs will need to create their own custom policy and deploy it.
EPM is available to IT Support Organizations (ITSOs) with any endpoint management questions. If you have a question about a specific endpoint client, please reach out to your local endpoint client support organization.