How to create custom policies in SEPM to prevent a threat from spreading