Only ALLOW or PREVENT are valid for ACF2/CICS TRANS rules, SERVICE is not valid.
With ACF2/CICS the transaction resource rules are used to validate a user's access to a transaction, either ALLOW or PREVENT. The File control resource rules(CFC) can be used to validate a user's SERVICE(READ,ADD,UPDATE,DELETE).
For ACF2/CICS resource rules SERVICE(READ,ADD,UPDATE,DELETE) is used to specify the type of access for which this rule is valid. This parameter is valid only for CICS file access(CFC), record access, transient data(CTD), temporary storage(CTS), SP commands(XCD), and possibly application program interface USERKEY validations. It is part of the environment that CA ACF2 checks to select the rule for validation.