Here are some great resources for hardening you CMS:
WordPress: OWASP WordPress Security Implementation Guide [OWASP]
WordPress: Hardening WordPress [Official WordPress Codex]
General: How to Secure your CMS [MalwareBytes]
General: A Security Overview of Content Management Systems [Detectify]