In my opinion, the best way to ensure that your WordPress security is through the use of a clean hacked wordpress site backup plugin. This is a relatively inexpensive, elegant and easy to use way to be sure your website is available to you in the event of a disaster.
I protect an access to important files on the blog's server by placing an index.html file in the particular directory, that hides the files out of public view.
Keep your WordPress Installation up to date - One of the easiest and most valuable tasks you can do yourself is great site to ensure that your WordPress installation is upgraded. WordPress gives you a notice in your dashboard, so there is really no reason not to do click reference this.
In addition to adding a secret key to your wp-config.php file, also consider changing your user password into something that is strong and unique. WordPress will let you know the strength of your password, but a good idea is to avoid common phrases, use letters, and include numbers. It's also a good idea to change your password frequently - say Website once every six months.
Of course it's possible to set up more plugins to make your store more user-friendly like backup plugin or share buttons. That's all. Your store is up and running!