でらDX研究所合同会社 is based in Toyoake, Aichi Prefecture, Japan, and positions itself as a provider of information security, DX, and IT consulting services. Its security practice focuses on building and operating ISMS programs, preparing for the SCS evaluation system, cloud security checks, generative AI usage governance, and the automation and visualization of security operations. The content is clearly aimed at small and mid-sized businesses, emphasizing the conversion of compliance requirements into day-to-day operational mechanisms that can actually be executed.
The company is not a standalone security product vendor, but rather a consulting and implementation-oriented service provider. Its coverage spans management systems, risk assessment, information asset inventories, internal audits, vendor management, evidence records, permission management, external sharing, logs, backups, education and training, and AI usage rules. For cloud security, it supports checks for external sharing, permissions, audit logs, backups, and administrator operations across Microsoft 365, SharePoint, Teams, OneDrive, and Google Workspace. For AI, it focuses on prohibited input data, usage approval, review processes, logs, and training.
Delivery is mainly based on consulting support, current-state assessment, gap analysis, countermeasure design, and helping operational practices take root. Services can be provided online across Japan, while on-site support is centered on Aichi Prefecture and the Tokai region. On the compliance side, the focus is mainly ISO 27001/ISMS and the SCS evaluation system, but the text does not disclose the company’s own certifications or any assessor/accreditation qualifications. In terms of integration, in addition to M365 and Google Workspace, it also mentions using Power Automate, PowerShell, and Python to improve the efficiency of asset-register updates, permission checks, backup verification, and audit evidence organization.
The website does not disclose pricing, packages, payment methods, or implementation timelines, so prospective buyers need to contact the company via a form to confirm scope and costs. Its strengths are that it covers the full loop from policies and procedures to cloud configuration and real-world operations, making it suitable for small and mid-sized businesses without a dedicated security team. It also pays attention to generative AI governance, which fits current workplace scenarios well. The downsides are the lack of public case studies, pricing, service SLAs, and information on the company’s own qualifications. It also does not show 24/7 monitoring, alerting, or managed detection and response capabilities.
It is best suited to small and mid-sized companies operating in Japan that need to explain their security management status to customers, prepare for ISMS or the SCS evaluation system, and make heavy use of M365, Google Workspace, and generative AI. The text does not mention accessibility from China, and payment methods are also unknown. For implementation in China, companies would generally be better served first comparing local ISO 27001, MLPS, and data security compliance consultancies, as well as domestic cloud security configuration management and office security service providers.
⚠ This review is compiled from public sources and does not constitute a purchase recommendation. Verify all facts on the vendor's official site. Verify on deratege.com official site.
deratege.com is an Japan Cybersecurity provider. TG4G tracks its product information, an overall rating of 6.0/10, and a China-accessibility score of Limited (proxy recommended). Click "Visit Official Site" to reach deratege.com directly.