Here are some examples of measurable information security goals:

1. Increase the efficiency of security monitoring by 20% in the next 12 months.
2. Decrease the impact and/or number of information security incidents by 30% in 12 months.
3. Achieve a maximum data loss of 6 hours in case of a backup failure.
4. Decrease the number of security incidents in the next year by 20%.
5. Ensure the average monthly availability of production servers is at least 99.98% over the next 24 months.
6. Bring the number of unauthorized entries to secure areas down to zero during the next year.
7. Eliminate the usage of personal data from software testing by the end of 2024.

These goals are specific, measurable, achievable, relevant, and time-based, aligning with the S.M.A.R.T. concept.