This is just a quick post from me. I made a summary notes for Dupal Security Best Practice and Drupal Hardening Guide. Yesterday, i found some interesting link from /r/netsec about Drupal Security Best Practice. You can download the PDF from here :
http://openconcept.ca/sites/openconcept/files/DrupalSecurityBestPracticesforGovernment-0.92.pdf
I add another links and resources about Drupal Security :
http://www.slideshare.net/kirkstenvon/drupal-security-hardening
http://security-24-7.com/hardening-guide-for-drupal-7-7/
http://montenasoft.com/files/Securing_Your_Drupal_Site.pdf
Enjoy!
Happy Hacking