I absolutely agree, there should be organization level policies for the app settings under “Security” to be able to control what the user can set or force specific settings. I would also include policies the Clear Clipboard settings and those related to browser integration because these are also security related.
also seem to have duplicate request Organization Policies - Force Vault timeout action