Confidently Secure Sites by Mastering WordPress User Security & Management

WordPress User Security Workshop

3PM BST (10AM EST) - 29th August 2024

I will be showing you the tools and plugins I use as well as the code I write to keep my and your users safe. This workshop is for you; every single WordPress administrator and developer should take this workshop.

What we will learn

Master User Account Management

Easily manage users’ roles and permissions to ensure everyone has the right access. Learn how to create custom roles and capabilities with and without code. Learn how to determine the capabilities and things your users need to have access to vs the things they want to have access to. Discover how to handle temporary users and more advanced organisational users who might have single sign-on.

Strengthen Authentication

Add an extra layer of security with multi-factor authentication. Learn my choice of MFA plugins and why I have chosen them. Enforce strong password policies, identify weak passwords and prevent, as best we can, password reuse. Follow best practices for secure session management to help avoid cookie stuffing and use modern encryption standards for passwords.

Enhance Security Monitoring and Secure Data Handling

Learn how to set up user activity logging and then how to cut through the noise with actionable alerts. Manage user data across multiple environments to ensure users’ private information is not stored on staging and other non-production environments. When it comes time to remove a user, learn how to do it safely and still comply with EU/UK data regulations.

The workshop covers:

  • User Management
  • User Logging
  • Auditing Users
  • Roles and Capabilities
  • Password Management
  • Session Management
  • Multi-Factor Authentication
  • Handling Users’ Data
  • Multisite
  • Single Sign-on

By the end of this workshop:

  • You will feel confident in how to set up WordPress sites’ users, from traditional CMS/blogs through to E-Commerce and Membership sites.
  • Have confidence in what the best practice is for user management.
  • Have a good collection of plugins and know how to configure them.
  • Understand when you need to resort to code and why custom code is sometimes the better choice.
  • Feel you can take over a site and audit its users, identify problems and propose as well as implement changes
  • Understand the tradeoffs and challenges of implementing secure user management.

Who I am

Tim Nash on stage at WCEU 2023

I’m Tim Nash, a WordPress Security Consultant, professional doomspeaker, and educator. Over the past 20 years, I’ve helped build, manage and protect tens of thousands of WordPress sites in roles ranging from Developer and System Administrator to Security Consultant.

This workshop is the one I’ve always wished I had access to. It’s crafted from my extensive experience with both enterprise-level WordPress sites and smaller sites that may have lacked professional support. Whether you manage large-scale sites or support smaller clients, this workshop has the insights and tools you need and that I wanted.

Who is it for

WordPress Administrators

If you configure, install plugins, and manage users on a WordPress site this workshop is for you. It will guide you through what you need to do to keep your users safe and give you with the confidence to make the right security choices.

WordPress Developers

If you develop plugins, themes, and sites and work with WordPress, not only will this provide a solid foundation for understanding WordPress users, but you will also learn about best practices and code samples for hard coding, allowing you to take a site's user security one step further.

Agency/Site Owners

Even if you don’t administer sites, this workshop will help you to gain an insight into what your agency people working on sites should be doing. It will help you identify the risks and notice where you don’t have processes in place. You don’t need to understand the technical aspects to benefit from this workshop.

Tim’s workshop was full of practical advice, useful insights and blood-curdling terror, in equal measure. Thoroughly recommended for anyone managing WordPress websites at any level.

Nick Wilmot Portrait
Nick Wilmot
Post "Confidently clean a hacked WordPress site" workshop

Claim your spot:

£50 Early Bird
(£75 RRP)


Claim your spot today, and you will receive:

  • Lifetime access to the 90-minute workshop
  • 12 months of access to the recordings after the event and (download to keep forever)
  • Live Q&A immediately after the event.
  • Access to the resource document with all the information on the tools and services
  • Access to the code samples used

If you are a student in full-time education or are unemployed, please email me at tim AT timnash.co.uk for free access to the workshop. Note that free places are strictly limited and on a first-come, first-served basis.

FAQ

When is the Live Workshop & Q&A

The Live workshop will take place on August 29th, 2024. It will last 90 minutes and start at 3PM BST (10AM EST), followed by a 30-minute Q&A session. Recordings of the workshop will be made available shortly after.

How long is the workshop?

The workshop is 90 minutes long, with the live Q&A following immediately after being approximately 30 minutes.

Will I have lifetime access to the workshop?

Yes! You will have access to the videos to download and manage; if I do updates, you will also have access to these.

Can I pay with PayPal?

Yes! We use Stripe to process payments, and you can select PayPal at checkout.

Why am I seeing prices in Pounds here but x at Stripe?

We have enabled Local Currency support, so in theory, you are seeing your local currency at the best exchange rate. You can swap to usingGBP at checkout if you prefer.

When does Early Bird Pricing end?

Early Bird pricing ends at 23.59 BST on the 8th of August 2024.

Can I share the workshop with my colleagues?

You can certainly share your teachings but I would ask you didn’t share the resources. If your entire team wants to learn then please consider getting in touch and I can arrange a workshop for your team.

Do I need prior knowledge or tools before joining?

Basic knowledge of managing a WordPress site and an understanding of terminology, such as knowing that MySQL is a database. The workshop includes more advanced methods, but you don’t have to use them and the step by step guide can be done by all.

Are there any additional costs?

Nope! Everything is included. All the tools we will use are free, a couple of recommended plugins have optional paid extras.

I have another question!

No worries, I’ll be happy to help. email hello AT timnash.co.uk