As tested on the FUJIFILM Apeos C3061
Jobs > Job Settings > Printer Lockout > Edit > Enable: ON
Jobs > Job Settings > Stored Print Job Settings > Minimum Passcode Length (Digits): 12
Apps > Web Browser Setup > Delete Persistent Cookie upon Closing: ON
Apps > Web Browser Setup > Clear Cache upon Closing: ON
System > Security > SSL/TLS Setting > Protocol Version: TLS1.2 or Later
Apps > Web Browser Setup > SSL Cert Verification Failure: STOP ACCESSING SITE
Network > Protocols > SNMP > SNMP v1/v2: OFF
Network > Protocols > SNMP > SNMP v3: ON
Network > Protocols > SNMP > Authentication Failure Generic Traps: ON
Network > Protocols > SNMP > SNMP v3 > System Administrator Account > Message Digest Algorithm: SHA-256
Network > Protocols > SNMP > SNMP v3 > System Administrator Account > Authentication Password: Complex Value
Network > Protocols > SNMP > System Administrator Account > Message Encryption Algorithm: AES-128
Network > Protocols > IPP or LPD or Port9100 > TBCP Filter: ON
Network > Protocols > IPP or LPD or Port9100 > TBCP Filter: OFF
Network > Protocols > SMTP > TLS/SSL Communication: SSL/TLS
Network > Protocols > SMTP > SMTP Authentication: SMTP AUTH
Network > Protocols > POP3> TLS/SSL Communication: ON
Network > Protocols > HTTP > Maximum Connections per Port: 1
Network > Protocols > HTTP > CSRF Protection: ON
Network > Protocols > HTTP > Port( HTTP/HTTPS): Enable HTTPS Only
Network > Protocol -> IPP -> Port Number: 0
Network > Protocols -> IPP > TBCP Filter: ON
Network > Protocols > WebDAV > Port: OFF
Network > Protocols > WSD > Port (Scan To Desktop): OFF
Network > Protocols > WSD > Port (Print From Desktop): OFF
Network > Protocols > FTP Client: OFF
Network > Protocols > lpd > PJL: OFF
Network > USB : OFF
System > System Settings > Plug-in Settings > Embedded Plug-ins: OFF
Permissions > Authentication/Accounting > Authentication/Accounting Type: Remote
Permissions > Authentication/Accounting > Advanced Settings > Limit Login Attempts of System Administrator: 5
Permissions > Authentication/Accounting > Authentication/Accounting Type > Remote > Kerberos: ON
System > Logs > Audit Log: ON
System > Security > Certificate Settings: Depending on PKI
System > Security > Certificate Revocation Settings > Level of Certificate Verification: HIGH
System > Security > Certificate Revocation Settings > CRL Retrieval > Auto Retrieval of CRL: ON
System > Security > SSL/TLS Settings > POP3 TLS Communication: ON
System > Security > SSL/TLS Settings > Verify Remote Server Certificate: ON
Apps > Scan > Common Settings > PDF/DocuWorks Signature Settings > DocuWorks Signature Hash Algorithm: SHA-256
Job > Job Settings > Completed Jobs View: REQUIRE LOGIN TO VIEW JOBS
Job > Job Settings > Completed Jobs View: LOGGED-IN USER ONLY
Permissions > Permissions > Access Control > Job Operation Restrictions > Pause/Delete: JOB OWNERS AND ADMINISTRATORS
Permissions > Permissions > Access Control > Job Operation Restrictions > Continue Print: JOB OWNERS AND ADMINISTRATORS
Permissions > Permissions > Access Control > Job Operation Restrictions > Promote Print Job: JOB OWNERS AND ADMINISTRATORS
System > Security > Service Representative Operation Settings > Operation Restriction > Enable: ON + Complex Password
Permissions > User Accounts: Complex Values
Permissions > Access Control > Feature Access > Print Files from Folder: Locked
Permissions > Authentication/Accounting > Password Policy > Minimum Length: 12
Permissions > Authentication/Accounting > Password Policy > Maximum Length: 63
System setting > Other Setting > DataEncryption [only Local UI settings]: ON + Complex Password
Network > Protocols > SMB > NetBIOS: OFF