User has READ acesss on the dataset but is allowed to CREATE a dataset.
Release : 16.0
Component : Top Secret for z/OS
When a security check occurs for a dataset, there are two security checks.
Access to the volume is checked first. If authorized, then datasett authorization is checked.
CREATE access is not checked at the dataset level but at the volume level.
So, the VOLUME permissions controls CREATE access on that volume.