5 Easy Ways To Fix Your Insurance Agency’s WordPress Website Security

5 Easy Ways To Fix Your Insurance Agency’s WordPress Website Security

I know as an agency owner you’re busy.

You are probably balancing a bunch of different tasks right this very minute.

Unfortunately, managing your website is probably pretty low on the totem pole.

Maybe you had someone who was working on it?

The problem is if you aren’t working on it and you no longer have someone who is, then it’s just being ignored.

By ignoring your insurance agency’s WordPress website security you are leaving it vulnerable to all kinds of horrible things.

I don’t want horrible things to happen to your business.

I want to help you start taking back control over your website right now.

So here are five things you can do quickly and easily to make your website more secure.



Step 1: Stay Current With WordPress And Software Updates

WordPress along with its plugins and themes are always being updated by their developers.

The good news is WordPress will let you know when new updates are available.

You just have to make sure you apply them when they come out.

Keeping things up to date will help close any security holes that may show up over time.



Step 2: Set Up Automatic Daily Backups

What if you break something when doing an update? Or your site does get hacked?

This is where having a current (preferably, daily) back-up of your site is a must.

There are multiple ways to back-up your site but the hands-down easiest way is to use a plugin.

Backup Buddy is a simple and easy to use plug-in. It allows you to make an automatic back-up of your site and database. If you ever need to you can replace your broken or hacked site. It’s replaced with a fresh copy from before you started having issues.

And it’s free to use.



Step 3: Use Strong Passwords

This probably seems like a really obvious one.

But weak passwords are one of the easiest ways for hackers to take over a website.

I’m sure we are all guilty of using passwords that aren’t as secure as they should be.

I’ve done it myself in the past for sure.

So how in the world are you supposed to remember complicated passwords?

The best way to create a really, really good password is to use a password generator.

I highly recommend the free tool, LastPass. LastPass is safe and free software that will change your life. It will help you log and remember all the passwords you create with the click of a couple of buttons.

You can check out the LastPass website here.

Now that you have strong passwords ( and a way to remember them!) which ones are we talking about when it comes to your agency’s site?

There are 5 main website logins that need to have strong passwords:


  • WordPress Install
  • WordPress Database
  • Hosting Account
  • Domain Account
  • FTP Login



Step 4: Install A Highly Trusted WordPress Website Security Plugin

Installing a trusted security plugin is one of the easiest ways to up your WordPress website security. It only takes a minute and is like having a security guard watching your site 24/7.

The plugin will look for threats, let you know when people log-in and set rules that will only allow people to interact with your site in certain ways.

Here are a few security plugins that have a really good reputation in the WordPress security:

Any of these will work. I prefer and recommend Wordfence as it’s what I’m used to using, but you can’t go wrong with any of them.



Step 5: Install An SSL Certificate Through Your Hosting

What is an SSL Certificate?

SSL stands for Secure Socket Layer. This just means that any and all information that gets sent through your website is “hidden” behind an extra layer of security.

This makes it harder for anyone to access it or look at it while it’s being sent over the internet.

If you have one, your site’s address will start with https:// as opposed to just HTTP://. The extra “S” in there will tell you that an SSL Certificate is in use.

That’s good news.

If you don’t have that you will have to install one.

SSL Certificates are usually free but that depends on your host.

Most hosts will offer a free certificate through a company called Lets Encrypt. Some hosts charge upwards of $100 dollars though. So the cost will depend on your specific situation.

Whether you pay for it or get it for free it’s an absolute must.

Here’s a link to a blog post we wrote last year about SSL Certificates.



Let’s Recap The Basics Of WordPress Website Security

These are the 5 basic steps that will get you on the road to better WordPress website security:

  1.  Keep WordPress, Themes, and Plugins all up to date.
  2. Always have a backup of your site ready to go.
  3. Use strong passwords.
  4. Install a reputable security plugin.
  5. Install and configure an SSL Certificate.

I know the thought of managing your website can be kind of scary. I totally understand.

Hopefully, these 5 basic steps took a little bit of the guesswork and intimidation out of it.

Of course, this is by no means an exhaustive list.

There are a bunch more tech-savvy things you can do to harden your site’s security in the future.

But these 5 steps will provide you a quick and easy foundation to built your site’s security on.

Want to learn how to build a brand new WordPress website in less than 4 hours?

Something went wrong. Please check your entries and try again.
Posted in ,

Nick Line

Nick is the Owner of My Insurance Design. He lays in bed at night and thinks about digital marketing and how he can use it to help independent insurance agencies. It's pretty sad. He knows it.