Microsoft 365 Business Premium does offer a variety of device management and security settings that can be configured remotely via the web. However, these are managed through the Microsoft Defender portal or the Microsoft Intune admin center, and not through traditional Group Policy as in an on-premises Active Directory environment.
I recommend contacting a Microsoft representative or a trusted IT consultant.
# If the answer is helpful, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".