David and Matthew share the internal evolution of Mesa Airlines' approach to technology and cybersecurity. With Mesa being a contract carrier for United Airlines, the IT team's role is pivotal to ensuring seamless operations in a high-demand, thin-margin industry. David discusses how his team has transitioned from being perceived as a cost center to a trusted partner that delivers business solutions.

Matthew provides deep insight into the unique cybersecurity challenges faced by airlines, particularly as the TSA becomes more involved in regulating cybersecurity. He explains the importance of focusing on systems that could be "operationally disruptive" and why compliance frameworks like NIST CSF are becoming critical for the aviation sector.

The conversation explores how government entities, like the TSA and CISA, are still finding their footing in defining cybersecurity mandates for aviation. Meanwhile, Mesa is proactively helping shape this dialogue by balancing compliance with real-world application.

From implementing intelligent awareness training through KnowBe4 to piloting AI solutions, the Mesa team is focused on staying agile. David highlights the significance of using AI to enhance operational efficiencies and strengthen security, while Matthew underscores the importance of secure AI deployments with strong data governance.

Both guests emphasize that cybersecurity isn’t just about tools—it’s about people. Through consistent communication, training, and collaboration with business units, they are building a culture where security is a shared responsibility.