Potential work funding for ANY course of certification (within reason) - what should I do?

I have self-funded my OSCP and CISSP.
However my employer has stated that they will be willing to possibly fund a course or certification of my choice. This is within reason, I obviously can't ask for a course of a 2-3 week break from work to complete.
My current job is Incident Response and Digital Forensics. I'm fairly happy in that line of work.
I was thinking of asking for a the GREM course through SANS (GIAC Reverse Engineering Malware). I've only done basic malware work, more triaging and I know this is hugely connected to Incident response/forensics and is an area where people with the relevant skills are hard to come by.
I don't really want to do:
I did consider the CCNA but that is not advanced, and also I think I should learn that in my own time as I've never gone near a Cisco device in my life, and feel I have so much to learn that I don't want to just go on a 5-6 day course and risk being out of my depth.
Any thoughts?
What should I choose?
(P.S. I know this is a really open question but I'm just brain storming at the minute)
However my employer has stated that they will be willing to possibly fund a course or certification of my choice. This is within reason, I obviously can't ask for a course of a 2-3 week break from work to complete.
My current job is Incident Response and Digital Forensics. I'm fairly happy in that line of work.
I was thinking of asking for a the GREM course through SANS (GIAC Reverse Engineering Malware). I've only done basic malware work, more triaging and I know this is hugely connected to Incident response/forensics and is an area where people with the relevant skills are hard to come by.
I don't really want to do:
- Any Incident Response courses
- Forensics
- CISM or those types of thing
I did consider the CCNA but that is not advanced, and also I think I should learn that in my own time as I've never gone near a Cisco device in my life, and feel I have so much to learn that I don't want to just go on a 5-6 day course and risk being out of my depth.
Any thoughts?
What should I choose?
(P.S. I know this is a really open question but I'm just brain storming at the minute)
My Aims
2017: OSCP - COMPLETED
2018: CISSP - COMPLETED
2019: GIAC GNFA - Advanced Network Forensics & Threat Hunting - COMPLETED
GIAC GREM - Reverse Engineering of Malware - COMPLETED
2020: MCSA, OSCE
2017: OSCP - COMPLETED
2018: CISSP - COMPLETED
2019: GIAC GNFA - Advanced Network Forensics & Threat Hunting - COMPLETED
GIAC GREM - Reverse Engineering of Malware - COMPLETED
2020: MCSA, OSCE
Comments
2018: CySA+ | PenTest+ |CCNA CyberOps
2019: VHL 20 boxes
2020: OSCP eCPPT OSCP eCPPT (a bit undecided)