I'd suggest not wasting your money on a second e-mail server. Instead put your mail server on a separate interface off your firewall, and only allow the needed mail protocols to access it. Have the routing set up so that your internal users can still route to the mail server. Put on a server-wide antivirus package and implement policies about executable files.
For more info on this topic, visit these SearchSecurity.com resources:
Have a question for an expert?
Please add a title for your question
Get answers from a TechTarget expert on whatever's puzzling you.