AWS innovation sandbox provides a way to create a separate sandbox account that can be managed from a management account.

Along with the account level separation, network isolation is provided -as the sandbox is cut off from the internet entirely (uses transit gateway to get to the management vpc for any resources).

AWS Innovation Sandbox | Architecture Flow Diagram