Xwiki online security question

Hello everybody!

Newbie question here. I’ve got a fully functional xwiki instance in my internal network. Now I’d like to bring it online to have access from everywhere. My question is:

What should I do to keep it safe?

I already enabled CAPTCHA, and I was thinking about configuring it to use https instead of http (but I get stuck with the config of nginx). Is this the right way to go?

What would be the standard procedure?

Thank you in advance,

Vince