To create measurable information security goals, you can consider the following examples:

1. Increase the efficiency of security monitoring by 20% in the next 12 months.
2. Decrease the impact and/or number of information security incidents by 30% in 12 months.
3. Achieve a maximum data loss of 6 hours in case of a system failure, verified through regular backup tests.
4. Decrease the number of unauthorized entries to secure areas to zero during the next year.
5. Ensure the average monthly availability of production servers is at least 99.98% over the next 24 months.