diff --git a/it-and-security/lib/linux-device-health.policies.yml b/it-and-security/lib/linux-device-health.policies.yml
index 0d9e2f8aa2fb..b7093c02acdc 100644
--- a/it-and-security/lib/linux-device-health.policies.yml
+++ b/it-and-security/lib/linux-device-health.policies.yml
@@ -1,6 +1,6 @@
 - name: Linux - Enable disk encryption
-  query: SELECT 1 FROM disk_encryption WHERE encrypted=1 AND name LIKE '/dev/dm-1';
+  query: SELECT 1 FROM mounts m, disk_encryption d WHERE m.device_alias = d.name AND d.encrypted = 1 AND m.path = '/';
   critical: false
   description: This policy checks if disk encryption is enabled.
   resolution: As an IT admin, deploy an image that includes disk encryption.
-  platform: linux
\ No newline at end of file
+  platform: linux