Answer: How to protect websites from hacking?
The main question for you: What prompted you to make a site on Bitrix?
To create a site on Bitrix means to immediately increase all your future costs for the site by at least 5 times compared to any other solutions. This applies both to additional development and support, and to ensuring security control and auditing for fault tolerance and unauthorized entry.
It's just not practical.
madc0de

And here, as far as I know, Bitrix is ​​the most protected due to frequently released updates.

Or maybe it’s just the opposite: it’s so unprotected (mainly due to the logic that has become more complicated over time, which led to uncontrolled code management due to previous patches), that it becomes necessary to constantly release updates (“patches” / patches) ), complicating the logic even more, adding an additional load on the hosting and an even greater loss of code control (when searching for errors and expanding the functionality of the entire project in the future)?!

2XMR. And I would not trust specialists who take in rubles;)