Only allow internal employees to access career site in lower environment

We are currently facing an issue where external people or bots are accessing our lower environments and trying to apply for jobs on the lower environment career sites. We have disabled those career sites so mitigate any potential risks, but this is something that we would like to stop. Is there any way to ensure that only internal employees are able to access and view the career site in our lower environments?