yes, with the proper security plugin, for me is wordfence
- you must always follow the security tips
- do not use the word admin as administrator
- to try the updates of wp and plygins to a staging site
- the tables must not syart from wp_ but from somethinh else like wp_99_
- the paswords better to be phrases
- to have often backup and to test
- to use https://
- to add security rules to .htaccess
- and more