Some real-world "SOAP" services and service/client mixes necessitate cobbling together integration strategies.
"We publish our service, request, and response descriptions with WSDL...but provide no service operations" is classic unfortunately. I call these single-implicit-operation services.
Consider using HttpClient
to POST your text/xml
content to the service. Answers to another SO question may be a good place to start.
When you turn to signing the request content, check out this SO question about signing XML with an X.509 cert.
For the WS-Security header check out yet another SO question about adding a WS-Security header to a SOAP request that may help.