I don't know about you, but when I secured my WordPress blog, and I researched to find out what others do to maintain their blog secure, I found information I was completely confused. And some of the information was actually on superstitious or the top. People told me rename this folder to rename this file and install these ten plugins. It appeared to be quite a bit of effort and work.
By default, the newest version of WordPress is pretty darn secure. The development team of WordPress has considered anything that might have been added to some clean hacked wordpress site plugins. Before, WordPress did have holes but most of them are stuffed up.
Don't depend on your Web host - Many people rely on their web host to"do all that technical stuff for me", not realizing that sometimes, they do not! Far better to have the responsibility lie instead of out.
You first need to create a new user, before you can delete the default admin account. To do this go to your WordPress Dashboard and click on User -> Create New User. Then enter all of the information you will need to enter.
Now we're getting into things specific to WordPress. You must rename it to config.php and modify the file config-sample.php, when you install WordPress. You need click to find out more to deploy the database facts there.
Do your homework and some hunting, but if you're pressed for time and want to get this done once and for all, try the WordPress safety plugin that I use. It is a relief to know that my site (and company!) are secure.