The *potential* exists to be more secure because you’ve delegated those responsibilities to the CSP. Because they are no longer on your plate, you can focus your efforts on other areas of security.

Additionally — and let’s be honest about this — it’s unlikely that your team can match the CSP’s efforts in managing that underlying infrastructure. Even if you can, it’s not worth the investment.

The CSP’s economy of scale works to your advantage here.

As for segregation of the network traffic, that entirely depends on the CSP. The big three (AWS, Azure, GCP) offer some insights and assurances as to how they seperate traffic over the shared infrastructure. This work brings the concept of “your virtual private cloud” into the forefront. It’s still over a shared connection but protected enough that it no longer matters for 99.99999% of risk models out there.