As per my understanding we need to check/monitor the following's on daily basis.
-- Virus Definition of SEPM
-- Top source of attack.
-- Free Disk space of SEPM drive.
-- Left Alone Risk.
-- All action Failed risk.
-- AV Engine Off / Autoprotect off clients.
-- Outdated SEP Clients.
-- Configured Unmanaged Detector and notification as well for the same.
Please suggest.