As you know, Exchange Online Protection (EOP) plays an important role in your mail hygiene posture by blocking unsolicited or phishing emails and malware.
You may (or should) already have set policies for EOP.
Well, you can now use a Configuration Analyzer to have a review of your configuration and adjust based on Microsoft recommendations.
To start using it, logon to your Security & Compliance portal (https://protection.office.com/) and access the Threat managementPolicy blade
There you will see the Configuration Analyzer available under the Templated policies
When you access the analyzer, the system reviews your policies and provides recommendations/updated configuration settings
You can then review the recommendations for each section and if required choose to update your policy using the Adopt button
Using the Configuration drift analysis and history tab you will be able to identify which policy and settings have been updated by which user