I think this explains what I am faced with.
Are there any concerns using jbr from the remote web application? I am very new to all of this. I appreciate any suggestion anyone can provide.
Right... EBWS doesn't support the internal ESB Security model yet.
You should be able to use the JBT Http Gateway and the SOAPProxy for this.