It seems my gentle question has grown quite a bit.
I like what a lot of people are saying here about the subject.
My definition runs something like this:
A security expert is someone who:
1. is competent in technically maintaining and implimenting a security
infratructure (routers, firewalls, servers, software etc) at a company,
department, organisation etc.
2. can see, understand and impliment security requirements as a whole
3. can or knows where to call upon the necessary skills to secure various
resouces where he/she is not sufficiently competent (and can actually admit
that he/she is out of depth)
4. understands the concept of security within the context of hardware,
software, politics and individuals.
Some refining is necessary.
Craig A. Adams