CanIt works with Office 365 as it does with any smtp mail service; MX records for the domain are pointed to CanIt, and filtered mail is directed to the Office 365 server by setting the configuration using the Setup->Domain Routing in Canit.
One issue with Office365 is that Microsoft doesn't provide access to an Active Director system nor do they do recipient verification. So you must set up a Rules->Valid Recipients list in Canit to allow recipient verification.
However, if you have your own external AD/LDAP you can integrate this with CanIt to do recipient verification, streaming and authentication of user credentials.
Additional, Office 365 does provides a public POP3 and IMAP service which you may be able to use for authentication of users accessing the Canit webui. This would have to check against Microsoft documentation.
Other that this there is nothing special.