I ran across these templates from SANS for security policies (or e-policies) from the “In the Trenches” podcast.  Maybe you know of other links to similar information?  These are usually the most messed up policies I have seen in organizations.