This presentation will focus on highlighting security settings that users can leverage to keep their Cloudflare accounts and Internet properties secure. We'll cover account security (2FA/U2F, enforcing at organisation-level), and also other important parameters like orange-cloud vs grey-cloud, USSL, checking that your origin-IP isn't exposed, DNSSEC, SSL/TLS settings (>=Full), always use HTTPS, Cloudflare WAF, rate-limiting and Under Attack.