Hi akocjie,
Yes, the same AV Engine is under the hood of both products, consuming the same certified defintions by default. (There are different capabilities and components to both products of course- they are built for different purposes.) I recommend having the mail perimeter update its definitions more frequently (RR defs) than SEP's default three times per weekday. With these latest RR defs it will catch new threats that SEP using certfied defs will not.
Let me know if that is what you meant or-?
With thanks and best regards,
Mick