Protect your website with our WordPress Security and Maintenance Service
The Cognique Security and Maintenance Service ensures the continued smooth running of your company website. From daily back ups and critical updates to speed checks and performance monitoring – Cognique have got you covered. Contact us for more information.
What will the service include?
We will install and configure a WordPress plugin to help improve the security of your website. Features include Activity Auditing, File Integrity Monitoring, Blacklist Monitoring and File System Hardening. Once configured, we will continue to monitor the logs and action any suspicious activity.
We will connect your website to a centralised control panel which will alert us of any critical WordPress updates that need actioning as a priority and also monitor your websites connectivity, so that we receive alerts within minutes if your website goes down.
We will always back up your website before any updates are installed. We then install all updates and test your website to ensure there are no issues. If any issues arise, we will spend up to 1 hour in labour time trying to rectifying the issue*. If a resolution cannot be found, we will restore the website from the backup and notify you with suggested options. This service will be carried out weekly. Occasionally, WordPress may push out security updates ad-hoc automatically. When this happens, we will check your website within 1 business day to make sure it is still functioning correctly, and manually update any other plugins as necessary.
As with most content management systems, WordPress uses a database to store its page content. To improve the speed of a WordPress website, the use of a caching plugin can help, bypassing the database and creating static versions of each page. This technique can dramatically increase the page load speed, essential for improving Search Engine Optimization and increasing conversions. As part of the service we will install, configure and test a WordPress caching plugin and monitor its performance.
Hosting your website with us includes a daily backup provided by the hosting provider. These backups are great for disaster recovery. However, they can be executed randomly, so you never know exactly what data the backup contains. We provide a cloud based backup service for your website, taking daily backups at a specified time. It also allows us to perform ad-hoc backups, which can be executed prior to any updates being installed.
If your website is unfortunate enough to be compromised, we will perform a full post-hack security clean up. This includes the removal of any infected theme or plugin files, the removal or your URL from any blacklists, and the clean-up of any damaging search engine entries. We will then reset all your administrator passwords and make sure your website is fully up to date.
*We will only fix issues to existing features. The development of new website features is not included.
WordPress is one of the most popular open source content management systems on the Internet, thought to be powering 25% of all websites, from small startups to large corporations.
The nature of open source means that anybody can download it, sometimes for malicious purposes, with the intention of scanning through the source code looking for vulnerabilities. If a vulnerability is discovered, hackers can easily scan the internet looking for any websites using that particular version of WordPress and execute code to exploit it, which may then allow them to have full access to your website.
It is not just WordPress that can be a target, there are also millions of open source plugins available for WordPress which can be used to extend its functionality, which can be targeted in the same way. The more popular a plugin, the more websites a hacker knows it may be able to target.
Luckily the authors of WordPress and the major plugins spot and patch vulnerabilities very quickly and publish updates to the repository, which can then be quickly downloaded within the WordPress admin area.
I can update WordPress, why would I need your service?
It is very easy to update WordPress and your installed plugins; just login to the WordPress admin area, click on the ‘Updates’ link and then click the install button.
However, the other major component that sits on top of WordPress is your theme, the part of the jigsaw that your visitors will interact with, essentially the most important part.
When we develop bespoke WordPress themes, they will use the latest WordPress features available at that point in time. When updates become available certain WordPress functions may change or become obsolete. If your theme is using one of these functions, it may introduce errors, or features may stop working.
At this point, clicking the WordPress update button will not help, and the only way to fix the issue will be to modify the theme code in order to make it compatible with the changes.
Is this service not included in my hosting cost?
Many clients think that the annual hosting cost covers all the security of your website, providing a 99.9% guarantee that your website will be online. Whilst the latter is true, the security however covers only the hardware layer i.e. the computer that is serving the web pages. The application layer (the website) that sits on top of the server is almost never touched by the hosting provider due to the fact that care needs to be taken when updates are installed. A hosting provider can be running thousands of different websites, all built on different platforms, and for them to know the ins and outs of all websites would require a great deal of expertise. It is therefore safer for the customer to manage their own website to make sure it is running securely.
How much does the service cost?
The cost for this service is £49.99 + VAT per month. As a valued subscriber, you will also benefit from a 10% discount on any additional website development.