Besides the text and graphics you're creating, you'll require a protection and backup option for your website. how to fix hacked wordpress is very significant, and if you don't protect and back up your site you could lose data and information which may be tough to restore. You don't need to need to start over from scratch after you have done all that work, so make sure you're secure.
The one I recommend, and the more powerful approach, is to use one of the password generation and storage plugins available for your browser. I believe after a free trial period, you have to pay for it, although people like RoboForm. I use the free version of Lastpass, and I recommend it for those of you who use Internet Explorer or Firefox. That will generate secure passwords for you; you use one master password to log in.
Yes, you want to do regular backups of your site. I recommend at least a weekly database backup and a monthly "full" backup. More, if at all possible. If you make additions and changes definitely more. If you have a community of people which are in there all the time, or make changes multiple times a day, a daily backup useful source should be a minimum.
You can extend the plugin features with premium plugins like: Amazon S3 plugin, Members only wikipedia reference plugin, DropShop etc.. So I think this plugin is a fantastic choice and you can use it for free.
However, I recommend that you set up the Login LockDown plugin instead of any.htaccess controls. Login requests will stop from being allowed from a specific IP address for an hour. You may get into your panel whilst and yet you still have protection against hackers if you do that.