The fix hacked wordpress site Codex has an outline of what permissions are okay. File and directory permissions can be changed either through an FTP client or within the page from your hosting company.
Backup plug-ins is also significant. You want to backup database and all the files you can bring your blog back like nothing happened.
For me it's a WordPress plugin. They are drop dead easy to install, have all the features you need for a job such as this, and are relatively cheap, especially when compared to having to employ someone to get this done for you.
Another step to take to make WordPress more secure is to always upgrade WordPress to the latest version. The reason for this is that look at more info there come fixes for security holes that are older which makes it essential to upgrade.
Implementing all the above will probably take less than an hour to complete, while creating your WordPress site much more resistant to intrusions. Sites were cracked last year, largely due to preventable safety gaps. Have yourself prepared and you're likely to be on the safe side.