Security Center
Benchling provides cloud-native software solutions for life sciences research and development (R&D). These products are trusted by hundreds of global companies that operate in highly regulated industries, including biopharmaceuticals, vaccines, agricultural products, and industrial biotechnology. Customers utilize Benchling’s systems to securely store and process critical data pertaining to the design and development of advanced life science products. Because Benchling considers its commitment to protecting customer data as central to its mission, the company employs the most advanced security and privacy measures for data protection.
Benchling maintains a dedicated internal security team of security engineers, compliance experts, data engineers, and privacy- and incident-response professionals. This team is tasked with maintaining the company’s defense systems, developing security review processes, building security infrastructure, and implementing Benchling’s security policies. The team — whose members are actively involved in the global security industry, and possess extensive experience in the tech, government, and healthcare industries — also provides project-specific consulting services to Benchling’s product and engineering teams.
The security team’s data engineers are actively involved in Benchling’s data modeling, acquisition, aggregation, and analysis, working to uphold confidentiality, integrity, and availability in each step of the company’s robust threat detection process.
ArsenalBio
Beam Therapeutics
bit.bio
Cue BiopharmaCVE-2025-55182 - Benchling Not Affected
On December 3, 2025, the React team disclosed a security advisory for CVE-2025-55182, a vulnerability in React Server that allows unauthenticated remote code execution. Benchling’s Security team has confirmed that no Benchling products or services are impacted by this vulnerability. Our platform does not use the affected React Server components. We will continue to monitor developments related to CVE-2025-55182 and will provide updates if any relevant changes arise.
New Benchling SOC 2 Type 2 Report Available for Download
Benchling's updated SOC 2 Type 2 attestation report for Benchling's R&D Cloud products including Benchling Bioresearch, Benchling Bioprocess, and Benchling In Vivo, performed by Schellman Compliance, LLC. and covering the audit period from November 1, 2023 - October 31, 2024, is now available for download in Benchling's Trust Center.
Benchling's SOC 2 Type 2 report for the period covering from May 1, 2023 to October 31, 2023 is now available to request for download from our Trust Center.
ISO 27001:2022 Certification
Benchling recently completed its annual ISO 27001 audit of the Benchling R&D Cloud products including Benchling Bioresearch, Benchling Bioprocess, and Benchling In Vivo, performed by Schellman Compliance, LLC. The audit included the transition from ISO/IEC 27001:2013 to ISO 27001:2022 and the additional controls and implementation guidance of ISO/IEC 27017:2015 and ISO/IEC 27018:2019. An updated certificate is now available for download from Benchling’s Trust Center.
Annual Security Assessment (Penetration Test) Report Published
Doyensec, LLC just completed Benchling's 2024 security assessment / penetration test. The scope of this test covers the Benchling and In-Vivo platforms. Please see summary reports in the portal for more detail.
Benchling Tenant Hardening Guide Now Live!
We are thrilled to introduce the Benchling Tenant Hardening Guide, now available, which offers guidance to help our customers secure their Benchling tenant and align with security best practices. Whether you're a new customer just starting with Benchling or an existing one, this guide is designed for you! As new security features are released, we will keep updating the guide with additional information. Enjoy!