# Exchange
**Section Purpose:** The security section shows recommend security controls for Teams based on the CIS Controls. Each control contains the following subsections:
* Description
* Policy Definition
* Licensing Considerations
* Set Up Instructions
* End-User Impact
* PowerShell Scripts
* Video Tutorials
| Policy | End-User Impact | License |
| ------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- | ----------------------------------------------------------------- | --------------------------------------------------------------- |
| [automatic-forwarding-to-external-domains-shall-be-disabled](https://docs.tminus365.com/security/exchange/automatic-forwarding-to-external-domains-shall-be-disabled "mention") | Low | Standard |
| [sender-policy-framework-shall-be-enabled](https://docs.tminus365.com/security/exchange/sender-policy-framework-shall-be-enabled "mention") | Low | Standard |
| [domainkeys-identified-mail-should-be-enabled](https://docs.tminus365.com/security/exchange/domainkeys-identified-mail-should-be-enabled "mention") | Low | Standard |
| [domain-based-message-authentication-reporting-and-conformance-shall-be-enabled](https://docs.tminus365.com/security/exchange/domain-based-message-authentication-reporting-and-conformance-shall-be-enabled "mention") | Low | Standard |
| | | |
| [enable-email-encryption](https://docs.tminus365.com/security/exchange/enable-email-encryption "mention") | Low | Azure Information Protection Plan 1/Business Premium/Enterprise |
| [simple-mail-transfer-protocol-authentication-shall-be-disabled](https://docs.tminus365.com/security/exchange/simple-mail-transfer-protocol-authentication-shall-be-disabled "mention") | Low | Standard |
| [calendar-and-contact-sharing-shall-be-restricted](https://docs.tminus365.com/security/exchange/calendar-and-contact-sharing-shall-be-restricted "mention") | Low | Standard |
| [external-sender-warnings-shall-be-implemented](https://docs.tminus365.com/security/exchange/external-sender-warnings-shall-be-implemented "mention") | Low | Standard |
| [data-loss-prevention-solutions-shall-be-enabled](https://docs.tminus365.com/security/exchange/data-loss-prevention-solutions-shall-be-enabled "mention") | Medium | Business Premium/Enterprise |
| [emails-shall-be-filtered-by-attachment-file-type](https://docs.tminus365.com/security/exchange/emails-shall-be-filtered-by-attachment-file-type "mention") | Low | Defender for Office 365 |
| [zero-hour-auto-purge-for-malware-should-be-enabled](https://docs.tminus365.com/security/exchange/zero-hour-auto-purge-for-malware-should-be-enabled "mention") | Low | Standard |
| [phishing-protections-should-be-enabled](https://docs.tminus365.com/security/exchange/phishing-protections-should-be-enabled "mention") | Medium | Defender for Office 365 |
| [inbound-anti-spam-protections-shall-be-enabled](https://docs.tminus365.com/security/exchange/inbound-anti-spam-protections-shall-be-enabled "mention") | Medium | Standard |
| [safe-link-policies-should-be-enabled](https://docs.tminus365.com/security/exchange/safe-link-policies-should-be-enabled "mention") | Medium | Defender for Office 365 |
| [safe-attachments-shall-be-enabled](https://docs.tminus365.com/security/exchange/safe-attachments-shall-be-enabled "mention") | Medium | Defender for Office 365 |
| [ip-allow-lists-should-not-be-implemented](https://docs.tminus365.com/security/exchange/ip-allow-lists-should-not-be-implemented "mention") | Low | Standard |
| [mailbox-auditing-shall-be-enabled](https://docs.tminus365.com/security/exchange/mailbox-auditing-shall-be-enabled "mention") | None | Standard |
| [alerts-shall-be-enabled](https://docs.tminus365.com/security/exchange/alerts-shall-be-enabled "mention") | None | Defender for Office 365 |
| [audit-logging-shall-be-enabled](https://docs.tminus365.com/security/exchange/audit-logging-shall-be-enabled "mention") | None | Standard |
| [enhanced-filtering-shall-be-configured-if-a-3rd-party-email-filtering-tool-is-being-used](https://docs.tminus365.com/security/exchange/enhanced-filtering-shall-be-configured-if-a-3rd-party-email-filtering-tool-is-being-used "mention") | Low | Standard |