Ultimately, secure your wordpress site will inform you that there is no htaccess within the directory. You may put a.htaccess record into this directory if you want, and you can use it to handle the wp-admin directory by Ip Address address or address range. Details of how you can do that are plentiful around the net.
It all will start with the basics. Attempt to use passwords. Use special characters, numbers, letters, and spaces and combine them to create a password that is special. You can use usernames that aren't obvious.
Maintain control of your assets that are online link - Nothing is worse than having your livelihood in somebody else's hands. Why take chances with something as important as your website?
Can you see that folder, Imagine if you go to WP-Content/plugins? If so, upload this blank Index.html file inside that folder as well so people can not see what plugins you have. Because if your existing version of WordPress is up to date, if you are using an old plugin or a plugin using a security hole, then someone can use this to get access.
You don't always think about needing security, Whenever your site is new but you do need to protect yourself and your investment. Having a site go down and not having the ability to restore it can mean a loss of customers who can't find you and won't remember to look for your site again later. Don't let this happen to you. Back up your site as soon as you get it started, as the site is operational, and schedule backups for as long. That way, you'll have peace and WordPress security of mind.