The CRDMO Symeres has announced that it has been awarded ISO/IEC 27001 certification, the internationally recognised standard for information security management systems (ISMS).
In a statement, the company said that the certification reinforced its "proactive commitment to safeguarding sensitive client data across its global operations."
As scientific collaboration becomes increasingly digital and interconnected, biopharmaceutical companies are demanding stronger data protection protocols from their outsourcing partners amid rising cybersecurity threats and AI-driven risks.
"Cybersecurity is no longer a back-office issue; it is central to the success of every client programme," said Gabriella Gentile, Chief Operating Officer at Symeres.
"Our ISO 27001 certification gives clients, from biotech startups to large pharmaceutical companies, the assurance that their proprietary data, often the 'crown jewels' of development, is protected within a robust and continuously improving security framework."
Symeres said that the company has "always had strong internal protocols," but the decision to pursue formal certification has been influenced by an increase in security questionnaires from clients and regulators.
For large pharmaceutical companies, information security assessments are now a standard part of onboarding.
The new ISO 27001 certification will help Symeres address these requirements upfront, streamlining due diligence. This reduction in administrative burdens, the company says, will allow project teams to focus on advancing client programmes and delivering scientific impact.
"This journey began two years ago as part of our continuous improvement culture," added Mark Verhaar, Project Manager at Symeres.
We identified our highest information risk areas, developed risk-based policies and created a formal, auditable system for managing access, backups and incident response.
"It's not just about compliance," he added. "It's about building a culture of vigilance and continuous improvement, ensuring that our security practices evolve alongside the scientific and digital complexity of our clients' programmes."
With ISO 27001 in place, Symeres says that it is now well positioned to support the needs of both established pharmaceutical clients and smaller biotechs that may rely on its expertise to navigate complex data governance.
The certification also supports broader industry compliance efforts, including the EU's NIS2 Directive, which identifies healthcare organisations as vital operators.
The company added that it is progressing with the rollout of ISO 27001 certification across its global sites, with completion targeted for before the end of the year. This phased implementation ensures consistent standards across the Group while maintaining operational continuity
Guillaume Jetten, CEO at Symeres, commented: "In today's environment, ISO 27001 is a non-negotiable foundation for doing business with large pharmaceutical companies and innovative biotechs."
Achieving this certification cements Symeres' status as a leading global CDMO operating with full transparency and accountability.