Simply I follow some basic rules of server security -
Update the OS & other applications
Minimize unnecessary software on servers
Unnecessary services should be disabled
Remove unnecessary operating system components
Minimize open network ports
Setup a good Firewall & maintain it
Monitor login...