Instead of Google DNS i would use NextDNS or Quad9 for higher security.
Also, what did you mean with "Safari (Hardened)"? What settings?
-> NextDNS / Quad9 <-
How will I be safer? The concepts of "Privacy" and "Security" are inseparable and one cannot be without the other on the Internet, but WHILE IT IS ALL, Privacy and Security are not the same. These are TWO DIFFERENT concepts. How is this change going to protect me? Can you explain to me? 
NextDNS works like a regular DNS server that blocks ads and trackers. This is great but in my opinion there is one disadvantage - serious - you have to trust them and here I am very careful. They are too short for me on the internet as a business. Google knows what I do on the Internet and I think it is hard to escape from user profiling by advertisers (which does not mean that you can not, you need to spend a lot of energy and time on it, and yet it will not be the level of TOR Browser that is hard to use every day as a normal browser unless you are crazy ...) which is not my threat model. However, the advantage of Google is that it is a well-known company with quite a lot of experience, good security systems and many specialists working practically 24/7 on the service and its security, which I am not entirely sure in the case of NextDNS. However, it is an alternative.
Well, unless there are other advantages that I don't see?
It's the same as asking why you don't use Bitwarden but KeePass? As KeePass has been around for longer as a "company" on the internet, it's proven by millions of users. For the same reason, I bought an MBP with an Intel processor and not an Apple M1. I will buy one in the next 2-3 generations when they get rid of childhood mistakes. It's fun to get excited about high performance, but no one says anymore that Virtualization is not quite working, there are problems with Docker and packages, there are only 2 thunderbolt 3 ports or even incompatible software.
-> Safari (Hardened) <-
Safari has been configured to reduce the attack surface as much as possible. I use it mainly for the few trusted websites that I use on a daily basis - there are only 15-20 of them - the most trusted and large companies that I trust will be rather difficult to break their security.
- Disable AutoFill
- Disable open files after download (though I do not download NOTHING)
- Show full website address
- Warn when visiting a fraudulent website (just in case what)
- No extensions (there are currently no extensions like NoScript Security Suite / uMatrix / uBlock Origin / HTTPS Everyvhere)
- I skip the AdGuard installation because uBlock Origin from Google Chrome does it to less trusted websites so as not to increase the attack surface and I need it because most of people use Google Chrome and I prefer to know how the created website looks at the client's. I live in Poland and computers with macOS are not very popular in companies (unless someone is a programmer etc.) due to the fact that they cost a lot of money and are not fully compatible with the companies' software. There is one CentOS server computer in my work and all the rest is Windows. The only person I saw live with macOS is my sister who got my old MBA 2017 from me. At the university everyone was surprised that I use macOS but what is not being done to be more secure? Linux! But it works once and doesn't work once, so ... In my opinion, it is much easier to hack Windows than macOS (stands for Unix) or Linux. It is also easier to ensure its security and keep the system and applications up-to-date. I chose macOS for work, home and school.
Do you have any more suggestions or questions?
