1) The authors describe how they secured a web application and backend systems to win an OpenHack competition by focusing on principles like reducing the attack surface, using strong authentication and encryption, validating all inputs, and implementing defense in depth. 2) Key aspects of their approach included using forms authentication for the web app, encrypting secrets, validating all user inputs with multiple checks, configuring IIS, Windows, SQL Server, and IPSec policies following security best practices. 3) They were able to securely manage the systems remotely using a VPN, Terminal Services, and restricted file shares while preventing firewalls.