Sorry my bad as well - Endpoint Security contains baselines for Windows, Defender and Edge. These are prio 1 from MS point of view. Other features from Endpoint Security is up to you, but you probably want to manage Antivirus, Firewall and Bitlocker at least. It is important that whatever you do, you don't overlap same settings from multiple sources/profiles. Also, if you start using Defender for Endpoint, you will realize you might need ASR for example, to cover all security recommendations.