Is it bit riskier to enable port 22 for all IPs [Always]?

Thanks,

P.S.: I am allowing it because of SFTP access.

If you’re using Key instead plain text password for auth then it’s already much secure.

See steps 16.