too little collaboration may lead to inefficiencies and sub-optimal compliance with enhanced information security initiatives, but too much collaboration may limit internal
audit's effectiveness in performing its role of being an independent monitor of compliance and performance