The document provides 5 tips for securing a WordPress site: 1) Change the default "admin" administrator account username; 2) Add a .htaccess file to wp-admin for an extra layer of security; 3) Use Apache's mod_security application firewall to monitor POSTs, GETs, and URLs; 4) Monitor logs with tools like Splunk and OSSEC to block attackers; 5) Keep all software up-to-date, including the operating system, web server, PHP, and WordPress.