None of them will look bad on a CV, just Masters degrees will pull more weight than other ones, especially ones that are just degrees from universities, rather than actual certificates from recognizable bodies, CREST, CEH, CISSP etc etc...
And since you are already understaking a Masters degree, i would guide you towards a PDH or gathering a few certificates in terms of progressing your education. However, this most likely wont come with the holiday.
From the sounds of things, would you not prefer to do a summer break 2/3 months in China as a holiday (you stated that money was of little concern) and then follow one of the above options for your education? PHD will give you 3 years to decide, specialise and you get a nice DR. before your name.
I know that the above has not, even remotely, came close to answering your question but i wanted to add my thoughts. =)
From your current knowledge of security, i would steer you towards an information security course, so you can learn about networking protocols, secure channel establishment, OS architecture and memory, all forms of crypto etc, so you know what your attacking and whats going on. It should be noted that a lot (if not most) of this would be theoretical. if its anything based off my course.
I, *PERSONALLY*, just feel that learning "technology" courses is a small step above script kiddie activity. Press X to port scan, press Y to show which services are active on reported ports. Push Z to list all possible known exploits. (even though all of this is a fundamental part =P)
In the mean time, email the universities and lecturers to get a clearer picture of what is taught.
