hi, is there any way to increase the security of the admin account/interface? Something like restricting the IPs that can be used to login with admin accounts, 2fa, etc.
Surely! You can enable 2FA for the admin account by logging in as admin and going to the Tools module. 2FA codes are send to the email address that is set in System > Main config > Mail > Administrator's e-mail. You can also whitelist just some IP's for the admin login by putting those IP's in this file: /usr/local/ispconfig/security/admin_ip.whitelist
Beside the things that @Th0m mentioned, the ISPConfig login is automatically protected against brute force password attacks and if you like, you can also change the name of the admin user to a different name by editing the users under System > CP users. But take care to only change the name of that user there and not any other settings to not break your system.