Apologies if this has been answered before. We are going for a hybrid migration to EOL. On-premise, we have Exchange 2016 and Exchange 2016 Edge transport servers, DLP appliance (Forcepoint 8.4), and Trend Micro IMVSA. The Edge Transport is only used for address-rewrite. We are deciding whether to enable Centralised Transport because we wish to retain the DLP applicance.
Please can you advise if Centralised Transport is the best choice? Should we re-create all DLP policies that are currently in Forcepoint over to Office 365 DLP so outgoing emails are screened.
We are using Cisco Email Security as the mail gateway. MX record points to the on-prem Exchange.
We also want to retain Trend Micro IMVSA and Cisco ES as our AV solution.
That's not a question you will find the answer for on a random board, you need to sit down with your team and evaluate whether the DLP capabilities of O365 meet your needs and whether there is a 1:1 correspondence with the features you are already using. Configuring centralized transport certainly sounds like an easy to give answer, but then again if you can have a similar setup within O365, why keep paying for the on-premises boxes.