WordPress is safe and secure to operate. You need not worry about anything but, still, it is suggested to update your site with latest WordPress version to avoid hacking.
The security of a website built on WordPress depends on various factors, including how well it’s maintained, the security measures implemented, and the diligence of the website owner/administrator. WordPress itself is a secure platform, but vulnerabilities can arise due to outdated themes, plugins, or core files, weak passwords, or lack of security best practices.
To answer the question in an interview, you could say:
“While WordPress itself is a secure platform and has a dedicated security team that actively works on patching vulnerabilities, the overall security of a website on WordPress depends on how it’s managed. Regular updates to WordPress core, themes, and plugins, strong password policies, implementing security plugins, using SSL certificates, and employing other security best practices are essential for maintaining the security of a WordPress website. Additionally, having regular backups and a plan for mitigating security risks is crucial. So, yes, a website on WordPress can be safe and secure, but it requires proactive management and adherence to security guidelines.”