In general, if you have the resources to take any of / all of the courses, then I think your beginning list is pretty good. There are many courses you could take, to followup for each specialization, but overall, the biggest reason to say CEH is just the start is that there are YEARS of experience and hands-on learning, which you'll continue for a lifetime, in the security realm. It never ends (which is good, as it keeps your brain going!)
Specific to your list, though, depending upon which path you want to take, another good one to add to the Pentesting would be OSCP. To add to the CISO one - you could insert CISA and CISM. Other category: too many to list, depending on whether you want to study disassembly / programming securely, wireless, etc.
It's a life long process, and I'm sure we could offer more hints, ideas and suggestions, should you come to a decision of which avenue you'd like to pursue, next, for yourself.
Good luck, and keep us posted.
Last edited by hayabusa
on Fri Feb 05, 2010 12:28 pm, edited 1 time in total.
~ hayabusa ~
"All men can see these tactics whereby I conquer,
but what none can see is the strategy out of which victory is evolved."
- Sun Tzu, 'The Art of War'
OSCE, OSCP (Former - GPEN, C|EH - both expiring / expired)