David Hopkins serves as the Chief Information Officer (CIO) of Mesa Airlines, overseeing all facets of the company's IT strategy, operations, and innovation. With a rich background spanning decades in aviation technology, David is known for transforming IT departments into value-driving business units. Joining him is Matthew Barreras, Director of Infrastructure and Cybersecurity at Mesa Airlines, who leads the airline's cyber defense posture. With a deep focus on regulatory compliance, modern threat mitigation, and building user-centric security programs, Matthew plays a crucial role in safeguarding Mesa's critical infrastructure.
Together, David and Matthew offer a rare insider's perspective into the intersection of aviation operations, cybersecurity, and evolving regulatory expectations. Their combined insight sheds light on how airlines can adapt to threats while enabling efficient and secure technology environments.
Here’s a glimpse of what you’ll learn:
- The operational structure of Mesa Airlines and how IT supports business goals
- How aviation cybersecurity is evolving under new regulatory oversight
- What it means to be "operationally disruptive" in an airline context
- The growing role of TSA and NIST CSF in aviation cyber compliance
- Strategies for effective end-user education and security awareness
- How AI is impacting both cyber defense and operational optimization
- Why collaboration between business and IT is key in modern organizations
In this episode…
David and Matthew share the internal evolution of Mesa Airlines' approach to technology and cybersecurity. With Mesa being a contract carrier for United Airlines, the IT team's role is pivotal to ensuring seamless operations in a high-demand, thin-margin industry. David discusses how his team has transitioned from being perceived as a cost center to a trusted partner that delivers business solutions.
Matthew provides deep insight into the unique cybersecurity challenges faced by airlines, particularly as the TSA becomes more involved in regulating cybersecurity. He explains the importance of focusing on systems that could be "operationally disruptive" and why compliance frameworks like NIST CSF are becoming critical for the aviation sector.
The conversation explores how government entities, like the TSA and CISA, are still finding their footing in defining cybersecurity mandates for aviation. Meanwhile, Mesa is proactively helping shape this dialogue by balancing compliance with real-world application.
From implementing intelligent awareness training through KnowBe4 to piloting AI solutions, the Mesa team is focused on staying agile. David highlights the significance of using AI to enhance operational efficiencies and strengthen security, while Matthew underscores the importance of secure AI deployments with strong data governance.
Both guests emphasize that cybersecurity isn’t just about tools—it’s about people. Through consistent communication, training, and collaboration with business units, they are building a culture where security is a shared responsibility.
Resources mentioned in this episode:
Matthew Connor on LinkedInCyberLynx
David Hopkins on LinkedIn
Matthew Barreras on LinkedIn
Mesa Airlines Website
Sponsor for this episode...
This episode is brought to you by CyberLynx.com
CyberL-Y-N-X.com.
CyberLynx is a complete technology solution provider to ensure your business has the most reliable and professional IT service.
The bottom line is we help protect you from cyber attacks, malware attacks, and the dreaded Dark Web.
Our professional support includes managed IT services, IT help desk services, cybersecurity services, data backup and recovery, and VoIP services. Our reputable and experienced team, quick response time, and hassle-free process ensures that clients are 100% satisfied.
To learn more, visit cyberlynx.com, email us at help@cyberlynx.com, or give us a call at 202-996-6600.
