diff --git a/lib/linux-device-health.policies.yml b/lib/linux-device-health.policies.yml
new file mode 100644
index 0000000..8b99870
--- /dev/null
+++ b/lib/linux-device-health.policies.yml
@@ -0,0 +1,5 @@
+- name: Linux - Enable disk encryption
+  platform: darwin
+  description: This policy checks if disk encryption is enabled.
+  resolution: As an IT admin, deploy an image that includes disk encryption.
+  query: SELECT 1 FROM disk_encryption WHERE encrypted=1 AND name LIKE '/dev/dm-1';
\ No newline at end of file