By default, the latest version of WordPress is pretty darn secure. The development team of WordPress has considered anything which may have been added to some how to fix hacked wordpress plugins. In the past , WordPress did have holes but most of them are filled up.
Backup plug-ins is also significant. You want to backup all the database and files so in the event of a sudden attack, you can bring your blog back like nothing happened.
One step you can take is to delete the default administrator account. This is critical because if you don't do it, a user name which they could attempt to crack is known by malicious user.
You can get an SSL Encyption Security for your WordPress blogs. The SSL Security makes encrypted and secure communications with your site. You may keep the all the cookies and history of communication so that all transactions are listed. Make sure all your blogs get SSL security for maximum protection from hackers.
You do think about needing security when your website is new go to this site but you do have to protect your webpage investment and yourself. Having a site go down and not having the ability to restore it may mean a loss of consumers who can not find you and won't remember to look for your site again later. Do not let that happen to you. Back your site up after you get it started, as the site is operational and schedule backups for as long. That way, you will have peace and WordPress security of mind.