No.
Most email is unclassified.
When the system works... they identify a problem and secure the system we shouldn’t be upset.
It should be at least confidential within the realm of the system. But, I suppose you are right. Patch only after a problem is detected.