An authenticated user is not able to access a job even if job read/discover permission is granted. Jenkins will simply show

Access Denied
<user> is missing the Overall/Read permission

But, with overall/read permission the user is able to access ALL jobs (and views), which contradicts the project based matrix authorization or role based authorization strategy (when using project roles).

With these strategies it should be possible to deny overall read and allow only access to specific jobs.

Even adding job discover/read permission in global context will not give an authenticated user read access to a job.

Tested with Matrix Authorization Strategy and Role-based Authorization Strategy.