Keep headers/logos under 125 pixels high. It takes up valuable viewing space, especially for laptop users, that is best left for the good stuff to appear"above the fold" Take a cue from the big companies, simple logos done well say it all. This is our #1 pet peeve - screaming logos and headers!
Finally, fix hacked wordpress will tell you that there is not any htaccess in the directory. You can put a.htaccess file if you desire, and you can use it to control access to the wp-admin directory from IP address or address range. Details of how to do that are easily available on the internet.
It all will start with the fundamentals. Try using passwords. Use letters, numbers, special characters, and spaces and combine them to make a password. You helpful resources can also use usernames that aren't obvious.
Keep your WordPress Setup to date - One of the simplest and most valuable tasks you can do yourself is to make sure your WordPress installation is updated. WordPress provides a notice in your dashboard to you, so there is really no reason.
As I (our untrue Joe the Hacker) know, people have way too many usernames and passwords to remember. You have got Twitter, Facebook, your online banking, LinkedIn, two blog logins, FTP, web hosting, etc. accounts that all come with logins and passwords you need to remember.
Implementing all the above will take less than an hour to complete, while creating your WordPress site much more immune to intrusions. Websites were cracked this past year, largely due to preventable security gaps. Have yourself prepared and you are likely to be on the safe side.