Best Practices for Managing Your WordPress Website

Managing Your WordPress Website’s Performance

A slow site will drive users away. A high performing site will generate significant traffic and attract more visitors over time.

• Take measures to decrease your site’s bounce rate.
• Know what your objectives are. Make sure that your site is primarily focused on those rather than gumming it up with functions and features that don’t serve them.
• Use Google Analytics to see how people are actually using your site. Use the results to adjust your site architecture and eliminate pages that nobody cares about.
• Optimize your site for all the platforms your visitors use, including mobile devices.
• Use WordPress-specific tools to help with Search Engine Optimization (SEO). But focus equally on Conversion Rate Optimization (CRO—making it easy for site users to do what you want them to).
• Focus less on cross-platform optimization (the most recent versions of major browsers have taken care of this already…and if your users are on old versions they should be encourage to update if for no other reason than to keep their local computers virus-free).
• Focus more on cross-platform optimization (responsive design, larger buttons and typography, more white space, optimized images).

Keeping Your Site Backed Up

Things go wrong, even with the best of sites and servers. Daily backups that are easy-to-make and easy-to restore are vital to helping you sleep at night. Use plugins for backups if you’d like, but know that they can be tricky to configure and require extra space on your server. So make sure your host provides daily backups as part of their regular service (our partner, SiteGround, is great at this), and know how to restore them if you need to. If you want to be doubly sure, secure a third-party support and WordPress maintenance plan to make and keep redundant backups over time and help with restoration.

Enhancing Site Security

Even if you keep WordPress and your themes and plugins up to date, your site may not necessarily be as secure as it could be. When managing your WordPress website, additional steps can make your site even more secure against hackers and spammers:

• Secure site management and administration: official WordPress updates; known-safe plugin use and updates; SFTP instead of FTP; strong usernames and passwords
• Configuring your WordPress installation for added security: adding security keys to the wp-config file; using SSL if your site runs e-commerce
• Locking down part of your installation: password-protecting the wp-admin directory; disallowing file editing via the dashboard;
• Security by obscurity: using WP-hiding techniques via plugins or by changing the $table_prefix from “wp_” in your wp-config file.
• Monitoring your site for attacks: use a service like SiteGround’s Hack Alert Monitoring or Sucuri.net (included in oursupport plans) so you can be alerted to possible attacks and take steps to recover from them instantly if they happen

Take the extra time when setting up your site (or when working with a developer) to make sure it’s configured properly. Then set aside time on an at-least-monthly basis to make sure that other maintenance tasks are taken care of.