Hello - You can do this via App Level security rules in QMC.
There are many ways of achieving it; one of them is to create an AD group(s) specific to the App and then assign that AD group for the access in Apps Custom Properties. (See attached screenshot). The users should be associated with the correct AD group.
In this method, in general, one AD group will correspond to an App. However, you can re-purpose groups or create common AD groups for a set of similar security Apps.