As a administrator one of the time consuming tasks is to review and release quarantined emails. Why not let end users do it themselves?>
One of the methods used by scammers is to impersonate someone from your own domain name, e.g. you get an email from firstname.lastname@example.org telling you open email attachments or click links. One of the best ways to stop this is using DKIM, DMARC and SPF.
A good way to help users not fall victim to email phishing attacks is to let them know when an email is External. Emails may pretend to be from a ‘Internal’ person can be marked so it helps the end user make a informed decision on opening links contained.
Sometimes you may need to set an Outlook Out-of-Office message for a user that doesn’t have access to their email. This can be done from the Microsoft 365 Admin Centre.