I don't know this production specifically but you should consider the following things:
1) There are 2 ways to integrate the network prevent for mail:
* Exchange forwards a mail to the MTA -> the MTA transfers the mail to the Prevent for mail which analyze the
mail and then
returns the mail to MTA which forwards the mail to the destination
* Exchange forwards a mail to the MTA -> the MTA transfers the mail to the Prevent for mail which analyze the
mail and then
forwards the mail to another MTA which forwards the mail to the destination
For most clients the first option is the better one, because not many clients (that i know of) can afford 2 MTA's.
2) Do not enforce prevent policies on day one - this is correct regarding any module that you are about to use. first test the policies and make sure that the amount of false-positive's are as little as possible, and make sure you are preventing what you intended, just then start enforcing prevent policies on your corporate network.
If you have any more specific question you are more then welcome to ask.
Kind Regards,
Naor Penso