Project Portal should be placed behind the organization's firewall to shield it from attackers.
To further minimize the impact of a potential Project Portal server compromise, a reverse proxy can be set up to prevent an attacker from gaining system level access to documents stored in Project Portal Project Portal.