according to the KB this is where the SEPM policy exclusions should be stored : https://support.symantec.com/us/en/article.tech105814.html
We also noticed some missing options when adding new entries to the policy :
https://support.symantec.com/us/en/article.howto80920.html
According to this article you should have an option to select the type of scan (Security Risk, SONAR, or Application control).
On our system we can only select "Application control" from the list , other options are not available to select.
Anybody an idea why they are gone ? We are on the latest version.