We had to move away from SCEP to a "real" AV product. The main reason was due to the lack of data loss prevention in SCEP. If you added DLP, better reporting, an easy way determine what files had been quarantined and an easy way to restore files I may consider switching back. I just don't feel like SCEP is a full thought out AV solution. Instead it seems to be some afterthought that MS can't figure out what they want to do with. It deserves a dedicated console or at least a dedicated node inside ConfigMgr.
James Mymryk commented
It looks like this one might be able to close out as Windows Information Protection feature with Windows 10. https://technet.microsoft.com/en-us/itpro/windows/keep-secure/protect-enterprise-data-using-wip