The Chief Information Officer should enforce IRS policy to encrypt all data transmissions from end to end using Federally compliant encryption and prohibit nonsecure protocols. In instances when external partners cannot use Federally compliant encryption, ensure that risk-based decisions have been properly approved and data transmissions and transfer protocols have been properly authorized in an Interconnection Security Agreement (ISA).