During a Microsoft 365 planning workshop, provide baseline anti-spam and anti-malware filtering for Exchange Online. Microsoft security, identity, or compliance capability should it use?
Exchange Online Protection filters spam, malware, and email threats.
Why this answer
Exchange Online Protection (EOP) is the cloud-based filtering service built into Exchange Online that provides baseline anti-spam and anti-malware protection. It scans all inbound and outbound messages using heuristics, signature-based detection, and connection filtering to block malicious content before it reaches user mailboxes.
Exam trap
The trap here is that candidates confuse general Microsoft 365 apps (Stream, Forms, Planner) with security services, failing to recognize that Exchange Online Protection is the dedicated anti-spam/anti-malware service for Exchange Online.
How to eliminate wrong answers
Option A is wrong because Microsoft Stream is a video sharing and management service, not a security filtering capability. Option B is wrong because Microsoft Forms is a survey and quiz creation tool, not a messaging security service. Option D is wrong because Microsoft Planner is a task management and project planning application, not a security or compliance feature.