Simple answer to that question is - YES (because you are in Microsoft's forum and you have all licenses you need).
Taking it deeper - Thing is, that lot of has changed past few years and Internal Network has lost its meaning of importance. With M365 Defender for Endpoint, you analyze your workstations against Microsoft's recommendation and data which has been gathered around the world using telemetry. You get your start score of Apps, Devices, Data and Identity and start to improving that by applying Security Baselines, ASR and other single modern security solutions. M365 defender is very comparable solutiuon against other security vendors (see what happened to Symantec and F-Secure).
I believe that Internal network scanning is outdated thinking.