To control SYSLOG, your security administrator defines a RACF® JESSPOOL profile for the data set, an appropriate universal access, and then grants access to the userids or groupids that need a different access. NODEB's SYSLOG profile could look like this:

NODEB.+MASTER+.*.*.*.?

If you also use security labels for controlling your data, note that the SYSLOG data set(s) also has the highest (SYSHIGH) security label in your installation, a label it inherited from the master address space when created.